linkfox-temu-price-global

Warn

Audited by Snyk on Jul 16, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). 该 skill 的运行时会调用 Temu 网关 /temu/proxy 并把网关返回的 body(上游返回的 JSON 字符串/解析结果)通过 emit_result() 直接打印到 stdout(小响应)或摘要打印到 stdout(大响应),从而把“outsider(Temu/LinkFox 网关上游)返回的自由文本/字段值”进入 LLM 上下文。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 16, 2026, 08:10 AM
Issues
1