blink-agent

Fail

Audited by Snyk on Jun 16, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and instructs embedding secret values (e.g., "ghp_xxx", "postgres://...") directly in CLI commands (blink secrets set), which requires the model to handle and output secrets verbatim, creating a high exfiltration risk.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jun 16, 2026, 09:25 PM
Issues
1
Security Audit — snyk — blink-agent