specification-website
Warn
Audited by Snyk on Jun 26, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The skill instructs the agent to fetch and inject remote spec content at runtime (e.g., via the MCP endpoint https://mcp.specification.website/mcp and the one-shot context file https://specification.website/llms-full.txt), so external text directly controls prompts/context used to generate audits.
Issues (1)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata