ai-amazon-vine-program
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 该技能的运行时上下文由用户提供的
materialText/materialFile/materialUrl通过references/form-schema.json的x-layout: contextComposer进入 LLM;其中materialUrl指向公开网页且会被读取为可读文本(潜在包含他人撰写的提示注入内容)。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata