Abstract: Mini programs, as a popular new form of application at present, gather a large amount of privacy data. The existing research on the privacy security of mini program has not gone deep into the privacy ecosystem, and lacks thinking about the unique privacy leakage channels. In response to this research situation, an analysis and research on the privacy ecosystem of mini programs is conducted, clarifying its technical characteristics. A new type of unique privacy leakage problem in the mini program ecosystem was proposed, and relevant detection tools were developed. 8 vulnerable platforms were detected out of 10 popular mini program platforms, and among 1030 mini programs, 131 high-risk mini programs that directly leaked private data were detected.