skills/0xranx/golembot/escalation/Snyk

escalation

Fail

Audited by Snyk on May 11, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt instructs the agent to write an escalation entry that embeds the sessionKey value directly into an echoed JSON command, which requires outputting a potentially sensitive identifier verbatim and thus risks secret exfiltration.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

May 11, 2026, 12:10 PM

Issues

1