cnki-navigate-pages
Warn
Audited by Snyk on Mar 3, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). This skill's required evaluate_script runs inside CNKI search result pages and directly reads and acts on page DOM content (e.g., document.querySelector('.pages a'), '.countPageMark', '#orderList' and location.href) on a public third‑party website, so untrusted page content can influence navigation and actions.
Audit Metadata