skills/viktor-ferenczi/se-dev-skills/se-dev-server-code/Snyk

se-dev-server-code

Warn

Audited by Snyk on May 9, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Potentially malicious external URL detected (high risk: 0.90). During the required one-time preparation the skill runs remote installer scripts (PowerShell: irm https://astral.sh/uv/install.ps1 | iex and POSIX: curl -LsSf https://astral.sh/uv/install.sh | sh) which fetch and execute remote code the skill depends on (uv), so these URLs are runtime-executed external dependencies.

Issues (1)

W012

MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 9, 2026, 09:13 PM

Issues

1