wechat-article-archive
Warn
Audited by Snyk on Jun 18, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). 在
scripts/collect_articles.py的fetch_html()/parse_article()路径中,运行时会从外部网页(mp.weixin.qq.com的文章正文与其内嵌 HTML/JS)抓取可读文本并解析为 Markdown/元数据,随后这些内容会进入归档文件与后续 LLM 可读上下文;该外部网页属于“公共 web 内容/第三方作者文章正文”。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata