import-world-from-book

Warn

Audited by Snyk on Jun 23, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.85). 在 extract-world.tsprocessBatch() 中,脚本把 raw_text/chapter_*.md(由 split-book 从用户提供的 epub/txt 解析得到的原文内容)通过 --file 逐个附加到 opencode 运行参数里,导致 LLM 上下文包含“书籍原文/章节文本”这类非操作用户自写的外部自由文本,从而存在间接提示注入风险。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 23, 2026, 12:39 AM
Issues
1
Security Audit — snyk — import-world-from-book