linkfox-temu-price-global
Warn
Audited by Snyk on Jul 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 该 skill 的运行时会调用 Temu 网关
/temu/proxy并把网关返回的body(上游返回的 JSON 字符串/解析结果)通过emit_result()直接打印到 stdout(小响应)或摘要打印到 stdout(大响应),从而把“outsider(Temu/LinkFox 网关上游)返回的自由文本/字段值”进入 LLM 上下文。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata