getlarge/legreffier-explore
Systematic diary exploration: discover tags, entry distribution, coverage gaps, agent mistakes, and compile recipes
86
90%
Does it follow best practices?
Impact
81%
1.06xAverage score across 5 eval scenarios
Advisory
Suggest reviewing before use
Security
1 medium severity finding. This skill can be installed but you should review these findings before use.
W011: Third-party content exposure detected (indirect prompt injection risk)
What this means
The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.
Why it was flagged
Third-party content exposure detected (high risk: 1.00). The skill directly calls entries_list and entries_search (see Phase 1–4 in SKILL.md) to fetch and analyze diary entries — user-generated, untrusted content — and then uses those findings to drive compile recipes, pack creation, and actionable rules, so third-party content can materially influence agent behavior.
- Audited
- Security analysis