alibabacloud-ecs-windows-online-troubleshooting

Warn

Audited by Snyk on Jun 23, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). 在 references/cloud-metaserver.md 的 Step 2/3/4/5/6 中,运行时通过 Invoke-WebRequest 从外部元数据服务 http://100.100.100.200/... 获取 instance-id/ntp-server/kms-server/wsus-server/hostname 等内容,并将其作为可读文本(如 StatusCodeContentInstanceId)注入到后续 LLM 分析上下文;该元数据服务属于非操作用户所选输入的外部来源。

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 1.00). 该 Skill 明确要求生成并呈现以管理员权限执行的修复脚本(示例模板含 #requires -RunAsAdministrator),并包含修改服务、防火墙、注册表、MachineKeys 权限、启动配置等会改变系统文件与状态的操作,属于需要提权并可能修改主机状态的行为。

Issues (2)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 23, 2026, 07:06 AM
Issues
2
Security Audit — snyk — alibabacloud-ecs-windows-online-troubleshooting