development-planning-writer

Warn

Audited by Snyk on Jun 16, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). 该技能的运行流程包含“联网搜集资料,写入 04-source-log.md”(Step 5),会把运行时抓取的公开网页/权威来源的可读正文内容(如文章、规划文本、解读页)纳入LLM上下文,从而存在来自OUTSIDER(公共网页内容)的间接提示注入风险。

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 16, 2026, 03:23 AM
Issues
1
Security Audit — snyk — development-planning-writer