skills/thuyran/legal-skills-chinese/legal-risk-assessment/Snyk

legal-risk-assessment

Warn

Audited by Snyk on Jun 13, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (medium risk: 0.65). 该技能在“历史处罚与信用风险评估”步骤中会“检索国家企业信用信息公示系统网址，连接查询企业行政处罚记录”，这属于运行时抓取/读取公共网页内容（外部网站文本）进入LLM上下文的路径，存在外部作者自由文本（网页内容/公告/字段）间接提示注入风险。

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

Jun 13, 2026, 01:56 AM

Issues

1

Security Audit — snyk — legal-risk-assessment