skills/x-cmd/skill/ddgo/Snyk

ddgo

Warn

Audited by Snyk on Apr 10, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). This skill performs DuckDuckGo web searches and AI-summarized extraction of open web search results (see SKILL.md "AI Integration" and examples like x ddgo --ai "bash best practices"), which means it ingests untrusted, user-generated third-party web content that can influence agent actions and outputs.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 10, 2026, 05:40 AM

Issues

1

Security Audit — snyk — ddgo