connecting-im-bot

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). 该技能要求代理向用户收集并使用 IM 平台的凭据并将其保存到配置文件并用于执行连接代码，意味着秘密值会被明文接收、处理并写入输出/文件，存在凭证外泄风险。

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and the channel reference files (reference/wecom.md, reference/dingtalk.md, reference/lark.md) instruct the agent to open WebSocket connections to external IM platforms and share channel messages with the Agent, meaning it will ingest untrusted, user-generated messages from third-party IMs that could contain instructions affecting its behavior.