eas-hosting

Fail

Audited by Snyk on Jul 7, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The skill includes an example that passes an API secret value on the command line (eas env:create --value sk-xxx), which instructs embedding a secret verbatim in output/commands and is a high-risk exfiltration pattern.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jul 7, 2026, 04:29 PM
Issues
1