local-store-review-business-diagnosis
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 该技能的运行时输入包含用户粘贴的“门店评价内容”(storeReviewText)与可上传/可链接的外部材料;其中这些文本很可能包含非操作用户撰写的评论/客服记录等自由文本,并会被作为 LLM 上下文的上下文拼接输入(contextComposer)传入技能执行。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata