share-memory
Warn
Audited by Snyk on Jun 12, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Runtime path: the skill’s required workflow reads and injects project-authored Markdown from
AI_MEMORY/(e.g.,AI_MEMORY/PROJECT.mdLong-Term Memory andAI_MEMORY/SYNC_LOG.mddaily blocks) into the agent’s LLM context; those files may contain outsider-authored free text (e.g., from other agents or prior runs) and are not sanitized against prompt-injection.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata