zed-cherry-pick
Warn
Audited by Snyk on Jun 17, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). The skill’s runtime flow uses
gh pr view <PR_NUMBER> --json ...andgit --no-pager log -1 --pretty=format:"%b"to ingest outsider-authored PR metadata/body and commit message text into the agent context (e.g., PR titles/bodies from other authors), which can then be used to construct the cherry-pick PR title/body.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata