generate-sls-skill

Warn

Audited by Snyk on Jun 22, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (medium risk: 0.65). Step 4/6/9 的 LLM 输入会包含从“外部 SLS 资源 JSON(dashboard/alert/scheduled_sql/saved_search)”提取出的自由文本字段(如 dashboard/chart 的 displayName、title、markdownStr、以及其中的 query 片段),这些内容在运行时经 fetch_sls_data.py/本地目录读取后进入 parsed/* 并被拼入 LLM 上下文;因此存在 outsider-authored free text 的间接提示注入风险。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 22, 2026, 09:59 AM
Issues
1
Security Audit — snyk — generate-sls-skill