skills/alextangson/feishu_skills/feishu-approval/Snyk

feishu-approval

Fail

Audited by Snyk on Mar 27, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt's curl examples and header instructions require including an Authorization Bearer token directly in requests (e.g., -H "Authorization: Bearer YOUR_TOKEN"), which encourages embedding secret API tokens verbatim in generated commands—an exact high-risk pattern.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Mar 27, 2026, 07:26 AM

Issues

1