alibabacloud-icpba-sucessdata-query

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill queries the Alibaba Cloud Beian API (endpoint companyreg.aliyuncs.com) as shown in SKILL.md and scripts/query_icp_filing.py and ingests fields like BaSuccessDataWithRiskList and rectifySuggest (which may contain HTML/user-provided text), and the agent is expected to parse and act on those results, so untrusted third-party content can influence behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). Flagged https://aliyuncli.alicdn.com/setup.sh because SKILL.md explicitly tells the user to run "curl -fsSL https://aliyuncli.alicdn.com/setup.sh | bash" as an installation step—this fetches and executes remote code at runtime and is presented as a required dependency for the skill (Aliyun CLI).