ffuf-web-fuzzing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill repeatedly instructs creating and showing raw authenticated requests (req.txt) and examples that embed bearer tokens, cookies, and session IDs, which requires including secret values verbatim in commands or request files and therefore poses a high exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow and SKILL.md explicitly instruct the agent to analyze ffuf JSON results (e.g., "When analyzing ffuf results for users" and the ffuf_helper.py analyze command) and to use public SecLists wordlists and raw HTTP request templates from external sources (GitHub SecLists links and REQUEST_TEMPLATES), meaning the agent will consume and act on untrusted, public web responses and wordlists that could contain attacker-controlled content influencing follow-up fuzzing and decisions.