skills/zubair-trabzada/ai-realestate-claude/realestate-flip/Snyk

realestate-flip

Warn

Audited by Snyk on Jun 25, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). The skill’s REQUIRED runtime workflow uses WebSearch/WebFetch to retrieve public web pages/listings/comps (outsider-authored free text) and then ingests that readable text into the agent for analysis (e.g., listing descriptions, sold-comp details, market-condition articles).

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 25, 2026, 08:56 AM

Issues

1

Security Audit — snyk — realestate-flip