exam-planner

Warn

Audited by Snyk on Jun 20, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). 该技能在“Step 2:搜索最新信息”会运行运行时搜索(如“{院校专业} 考研 分数线 2026/报录比/经验”),从公开网页/搜索结果抓取的第三方文本会被读入并用于生成“分数线/报录比/经验”,属于公共网页等OUTSIDER来源的间接提示注入风险路径。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 20, 2026, 02:56 PM
Issues
1
Security Audit — snyk — exam-planner