skills/jianshuo/claude-skills/wjs-x-improving-content/Snyk

wjs-x-improving-content

Warn

Audited by Snyk on May 30, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.85). 该技能运行时把 state/tweets.jsonl（其中包含 X 上“manual”来源的外部作者推文文本 text）读入并在 scripts/analyze-content.py/scripts/scoreboard.py 中作为可读 prose 进行分析与渲染；这些文本属于“非操作用户作者的自由文本（X 公共内容/他人发帖）”。

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 30, 2026, 12:47 AM

Issues

1

Security Audit — snyk — wjs-x-improving-content