skills/constructive-io/constructive/cli-objects/Snyk

cli-objects

Fail

Audited by Snyk on May 9, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt shows an explicit command that requires placing a token directly on the command line (csdk auth set-token ), which forces inclusion of secret values verbatim in generated commands and is thus high-risk.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

May 9, 2026, 02:16 AM

Issues

1

Security Audit — snyk — cli-objects