skills/spences10/skills/svelte-runes/Snyk

svelte-runes

Fail

Audited by Snyk on May 17, 2026

Risk Level: CRITICAL

Full Analysis

CRITICAL E004: Prompt injection detected in skill instructions.

Potential prompt injection detected (medium risk: 0.60). The file contains hidden HTML-commented "LLM WORKFLOW" and editing guidelines (e.g., run npx skills add . --list, check frontmatter) that are meta-instructions for editors/LLMs and are unrelated to the Svelte runes guidance, so they constitute concealed, out-of-scope instructions.

Issues (1)

E004

CRITICAL

Prompt injection detected in skill instructions.

Audit Metadata

Risk Level

CRITICAL

Analyzed

May 17, 2026, 07:19 PM

Issues

1

Security Audit — snyk — svelte-runes