skills/jahrome907/minecraft-codex-skills/minecraft-commands-scripting/Snyk

minecraft-commands-scripting

Fail

Audited by Snyk on May 11, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The skill includes examples that embed an RCON password directly (server.properties, mcrcon -p your_password, MCRcon("localhost","your_password")), which instructs placing secrets verbatim into commands/code and poses a high exfiltration risk.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

May 11, 2026, 07:21 AM

Issues

1