univer-node-backend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's docs explicitly show importing workbook data from arbitrary URLs (e.g., "Import from URL" with api.importXLSXToUnitIdAsync('https://example.com/data.xlsx') in references/node-pro-integration.md) and loading remote collaborative units, which means untrusted third-party content (workbooks/remote sheets) would be ingested and can contain formulas or data that the server executes/interprets and thus could influence processing or subsequent actions.