feishu-cli-htmlbox

Warn

Audited by Snyk on Jul 2, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.85). 该技能运行时会把飞书文档端注入的 window.magic 读取到的“当前文档全文/元信息/评论/多维表记录”等内容(外部用户在文档中的自由文本)拼入 LLM 上下文(例如 getDocAsMarkdown() → 传给 window.magic.ai),属于“飞书文档中非操作用户选择引入的外部文本”经由文档小程序运行时进入模型。

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

Issues (2)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W012
MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 2, 2026, 10:38 AM
Issues
2
Security Audit — snyk — feishu-cli-htmlbox