scan-new-specs
Warn
Audited by Snyk on Jul 8, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Outsider-authored free text from public/third-party sources (merged PRs in
warpdotdev/warpandwarp-server, specificallyspecs/<id>/PRODUCT.mdcontent) is read at runtime and then used to generate Slack messages and to drive thewrite-feature-docsambient drafting workflow, so it can enter the agent/LLM context indirectly via the spec body.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata