yao-doctor-skill

Fail

Audited by Snyk on Jun 25, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.85). The list mixes trusted references (official GitHub projects, arXiv, api.github.com, X) with multiple high-risk items — direct links to .sh/.py files, paste/raw hosts (paste.rs), and Slack webhook endpoints — which are common vectors for distributing or exfiltrating malware and therefore make the set suspicious.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Runtime path: run_yao_doctor_skill.py scans discovered skill/workbench directories (including outsider-authored SKILL.md/code text) and then renders those findings into report.html/report.json; if the report is later used as LLM context, that outsider free text can be ingested (indirect prompt injection risk).

Issues (2)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 25, 2026, 04:00 AM
Issues
2
Security Audit — snyk — yao-doctor-skill