zed-cherry-pick

Warn

Audited by Snyk on Jun 17, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). The skill’s runtime flow uses gh pr view <PR_NUMBER> --json ... and git --no-pager log -1 --pretty=format:"%b" to ingest outsider-authored PR metadata/body and commit message text into the agent context (e.g., PR titles/bodies from other authors), which can then be used to construct the cherry-pick PR title/body.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 17, 2026, 06:30 AM
Issues
1
Security Audit — snyk — zed-cherry-pick