wingman

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes multiple curl examples that require inserting a bearer token directly into Authorization headers (e.g., -H "Authorization: Bearer {{YOUR_TOKEN}}"), which instructs an agent to include secret values verbatim in commands/outputs and thus creates an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill instructs the agent to fetch and act on user-generated profiles, messages, and discovery results from the public inbed.ai API (e.g., /api/discover, /api/chat, /api/matches in SKILL.md), so untrusted third‑party content is read and directly drives swipes, message composition, and matching decisions.