leveldb-ops
Fail
Audited by Snyk on Jun 16, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs reading and dumping LevelDB keys/values (e.g., printing rec.value or dumping Local Storage/IndexedDB), which will include API keys, cookies, session tokens or other secrets and therefore requires the LLM to output secret values verbatim.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.80). The skill's setup instructs installing a Python package directly from GitHub via pip (git+https://github.com/cclgroupltd/ccl_chrome_indexeddb.git), which fetches and installs remote code that the scripts import and execute at runtime, and the skill requires this dependency to run.
Issues (2)
W007
HIGHInsecure credential handling detected in skill instructions.
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata