Skills
skills/ali-master/skills/oRPC Batch Requests Plugin/Snyk

oRPC Batch Requests Plugin

Fail

Audited by Snyk on May 18, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt's Custom Headers example hardcodes an Authorization bearer token ('Bearer 1234567890'), which demonstrates embedding credentials verbatim in generated code/requests and thus requires the LLM to handle secret values directly.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
May 18, 2026, 08:11 AM
Issues
1