skills/uinaf/agents/vite-plus/Snyk

vite-plus

Warn

Audited by Snyk on May 12, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.70). SKILL.md explicitly tells the agent to "verify behavior against ... the latest release notes (https://github.com/voidzero-dev/vite-plus/releases)," which requires fetching and interpreting open/public GitHub content that can change commands or decision-making.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 12, 2026, 07:18 PM

Issues

1

Security Audit — snyk — vite-plus