skills/housegarofalo/claude-code-base/semantic-kernel/Snyk

semantic-kernel

Fail

Audited by Snyk on Mar 15, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt's examples explicitly pass API/admin keys as string literals (e.g., api_key="your-key", admin_key="your-key"), which instructs embedding secrets verbatim in code or outputs and thus requires the LLM to handle/output secrets directly.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Mar 15, 2026, 11:10 AM

Issues

1