heroui-react
Warn
Audited by Snyk on Apr 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). Flagged: SKILL.md explicitly requires fetching v3 docs ("Always fetch v3 docs before implementing") and the included scripts (scripts/get_component_docs.mjs, get_docs.mjs, get_source.mjs, get_styles.mjs, list_components.mjs) directly fetch MDX/docs and source from public endpoints (https://v3.heroui.com, mcp-api.heroui.com, raw.githubusercontent.com), so untrusted third-party content is ingested and can materially influence agent behavior.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.80). Yes — the skill's runtime scripts explicitly fetch remote MDX/docs and source (e.g., https://v3.heroui.com/docs/react/components/{component-name}.mdx and the API at https://mcp-api.heroui.com with a GitHub raw fallback like https://raw.githubusercontent.com/heroui-inc/heroui/...) and the guide says to "Always fetch v3 docs before implementing," meaning remote content is fetched at runtime and would directly drive implementation prompts/output.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata