Skills
skills/steipete/agent-scripts/github-author-context/Snyk

github-author-context

Warn

Audited by Snyk on May 11, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and ingests public, user-generated GitHub content (see "Live GitHub public profile" via gh api "users/<login>" and "Target-repo activity" via gh search prs/issues) and uses those live third-party pages/PRs/issues to form author signals and risk judgments, so untrusted external content can materially influence agent decisions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 11, 2026, 06:37 AM
Issues
1