feishu-cli-markdown
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). 该 skill 的
markdown fetch/markdown diff在运行时会从飞书云盘下载“远端 Markdown 文件内容”(外部作者的文件正文属于 outsider 来源),并将其作为可读文本(content/stdout 或用于 diff 计算)进入 agent/LLM 上下文。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata