skills/openclaw/skills/51mee-position-parse/Snyk

51mee-position-parse

Warn

Audited by Snyk on Apr 19, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 1.00). This skill directly ingests arbitrary user-provided job descriptions (see SKILL.md step "接收文本
用户提供职位描述" and the prompt template that embeds {职位描述文本}), which are untrusted user-generated content fed into the LLM and can carry indirect prompt-injection instructions that affect the model's outputs.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Apr 19, 2026, 08:37 AM

Issues

1

Security Audit — snyk — 51mee-position-parse