just-scrape
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 该技能的运行时上下文由用户提供的
materialText/materialFile/materialUrl组成(form-schema.json的contextComposer),其中materialUrl会在技能内部抓取公开网页正文并把可见文本喂给 LLM,属于“公共 web 内容在运行时被读取为可见正文”的外部自由文本注入风险路径。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata