skills/bobmatnyc/claude-mpm-skills/sveltekit/Snyk

sveltekit

Fail

Audited by Snyk on Apr 20, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt includes a literal secret-like API key example (STRIPE_SECRET_KEY=sk_live_abc123) and code showing secrets being inserted into requests, so it contains secret values verbatim and thus poses a high exfiltration risk.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Apr 20, 2026, 11:58 AM

Issues

1