stash-cli

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent/wizard to prompt for a database URL and generate a stash.config.ts (and shows examples like new EQLInstaller({ databaseUrl: 'postgresql://...' })), which requires embedding database connection strings (and thus credentials) verbatim in generated files/outputs.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly supports downloading the latest EQL install SQL from public GitHub releases (downloadEqlSql and the --latest/db install --latest flow) and can execute that fetched SQL as part of installation, meaning untrusted third‑party content from GitHub could directly influence tool behavior.