skills/aliyun/alibabacloud-ecs-troubleshoot-skills/alibabacloud-ecs-windows-online-troubleshooting/Snyk
alibabacloud-ecs-windows-online-troubleshooting
Warn
Audited by Snyk on Jun 23, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 在
references/cloud-metaserver.md的 Step 2/3/4/5/6 中,运行时通过Invoke-WebRequest从外部元数据服务http://100.100.100.200/...获取instance-id/ntp-server/kms-server/wsus-server/hostname等内容,并将其作为可读文本(如StatusCode、Content、InstanceId)注入到后续 LLM 分析上下文;该元数据服务属于非操作用户所选输入的外部来源。
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). 该 Skill 明确要求生成并呈现以管理员权限执行的修复脚本(示例模板含 #requires -RunAsAdministrator),并包含修改服务、防火墙、注册表、MachineKeys 权限、启动配置等会改变系统文件与状态的操作,属于需要提权并可能修改主机状态的行为。
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W013
MEDIUMAttempt to modify system services in skill instructions.
Audit Metadata