feishu-cli-markdown

Warn

Audited by Snyk on Jun 13, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). 该 skill 的 markdown fetch/markdown diff 在运行时会从飞书云盘下载“远端 Markdown 文件内容”(外部作者的文件正文属于 outsider 来源),并将其作为可读文本(content/stdout 或用于 diff 计算)进入 agent/LLM 上下文。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 13, 2026, 01:55 AM
Issues
1
Security Audit — snyk — feishu-cli-markdown