ljg-map
Warn
Audited by Snyk on Jul 3, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.78). 运行时会把“行业/领域名”触发的 deep research 的联网网页/外部资料(Research/web-access skill 抓取的公开网页正文等)作为可读文本进入 LLM 上下文,用于生成瓶颈/价值捕获/base rate/三大问题;这属于公共网页等 OUTSIDER 来源的间接提示注入风险路径。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata