brainstorming
Warn
Audited by Snyk on May 19, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The SKILL.md "Research-Driven Exploration" section explicitly instructs the agent to use WebSearch, WebFetch and curl to fetch and analyze competitor websites, public documentation, and API endpoints, meaning the agent will ingest untrusted third‑party web content that can influence its decisions.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata