linkfox-ehunt-etsy-product-query

Warn

Audited by Snyk on May 30, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). 该技能在运行时通过 _ehunt_productQuery 调用第三方数据服务网关,LLM 会把响应 JSON 中的 products[].title/tags/storeName/productUrl 等字段作为可读文本进入上下文;这些内容来自外部 Etsy 数据源,属于“公共/第三方网页内容的抓取结果/外部数据服务返回的文本”。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 30, 2026, 12:04 AM
Issues
1