films-search
Fail
Audited by Snyk on Jun 23, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs the agent to extract and return pan "extractCode" values (share passwords) verbatim in the JSON/response, which requires handling and outputting secret/password-like values.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). At runtime, the skill uses the
web-searchskill to fetch public web search result snippets and then passes extracted page URLs intodeep_extract.py, which usescloudscraperto fetch outsider-authored HTML from those arbitrary third-party pages; the script then reads that fetched HTML as text and extractstitle,quality, andextractCodefrom it into the JSON returned to the agent (LLM context).
Issues (2)
W007
HIGHInsecure credential handling detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata