nature-reader

Warn

Audited by Snyk on Jun 14, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.85). Outsider free text can enter the LLM context when the runtime resolves and loads a DOI/arXiv or publisher HTML page (static/fragments/source/doi-arxiv.md → resolved pdf-text/scanned-pdf/html, or static/fragments/source/html.md), which then extracts the article’s body text authored by others.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 14, 2026, 10:06 AM
Issues
1
Security Audit — snyk — nature-reader