n8n-mcp-tools-expert

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly describes credential CRUD that requires supplying the credential "data" (API tokens / N8N_API_KEY) in tool request bodies and shows examples with tokens, so an agent using this skill would need to accept and embed secret values verbatim in calls—creating an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and acts on public templates and examples via search_templates/get_template/n8n_deploy_template (and search_nodes with source "community"), which pulls workflows from the public n8n template library (e.g., n8n.io community templates) — untrusted, user-contributed content that the agent reads and can directly deploy or use to drive subsequent actions.