skills/fatih-developer/fth-skills/context-compressor/Snyk

context-compressor

Fail

Audited by Snyk on Apr 18, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 0.90). The compressor explicitly preserves "configuration constants" and "current config" and keeps code signatures/critical constants when summarizing code or state, which can force the LLM to copy secret values verbatim (and it gives no redaction or secret-handling rules).

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Apr 18, 2026, 09:27 PM

Issues

1

Security Audit — snyk — context-compressor