tgravity-work-search
Fail
Audited by Snyk on Jun 27, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 0.80). This skill explicitly asks the agent to request and accept users' Perplexity/Tavily API keys (secrets) via the conversation and store them into a local config file, so the LLM will handle secret values directly (exfiltration risk), even though it forbids embedding them in repo files or command arguments.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.75). Runtime LLM context is fed by Tavily/Perplexity API responses:
tavily_search()returnsdata.get("answer")andperplexity_search()returnscontentfrom third-party search engines, which may include outsider-authored free text scraped from public web pages; this is then printed/used as the agent’s context viato_markdown().
Issues (2)
W007
HIGHInsecure credential handling detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata