skills/thuyran/legal-skills-chinese/deductive-reasoning/Snyk

deductive-reasoning

Warn

Audited by Snyk on Jun 13, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (medium risk: 0.65). 该技能要求“阅读用户提供的案卷材料”并将其中的非结构化案情/事实文本（通常来自外部当事人/公开文书/他人撰写的材料）分类为小前提并纳入 LLM 推理链条输出；因此运行时存在将外部当事人/第三方自由文本直接读入并进入上下文的路径。

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 13, 2026, 01:56 AM

Issues

1

Security Audit — snyk — deductive-reasoning