skills/codealive-ai/ai-driven-development/clipboard/Snyk

clipboard

Fail

Audited by Snyk on May 4, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The skill generates shell heredocs and Swift clipboard commands containing the exact conversation text, so if that text includes API keys/passwords/cookies the LLM would output them verbatim (exfiltration risk).

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

May 4, 2026, 11:48 PM

Issues

1