grid25

Warn

Audited by Snyk on May 18, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill's Step 5 explicitly runs a web_search for "{industry} {要素} {人群} 抖音小红书 爆款标题" and then uses those open/web search results to generate 6–8 actionable topic suggestions, so it ingests untrusted public content (search results/UGC) that directly influences its outputs and actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 18, 2026, 09:25 AM
Issues
1
Security Audit — snyk — grid25