book-notes-generator
Warn
Audited by Snyk on Jun 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.70). 该技能在运行时会“搜索:
{书名} 书评 核心观点”,从而可能抓取/读取公开网页的书评或摘录文本并喂入LLM上下文,属于“公共web内容在运行时被获取并转为可读文本”的外部来源路径。
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata