wechat-original-hot

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). 运行时通过 fetch_articles.py 调用外部接口 https://redfox.hk/story/api/cozeSkill/getWxDataByCategoryAndTime 获取的文章字段（如 title、userName、oriUrl 等）会被直接拼入输出表格/HTML，属于“外部网页/第三方API返回的文本内容”进入LLM上下文。

MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

• Hidden Unicode characters detected (1 type(s) found)