clash-doctor

Fail

Audited by Snyk on Jun 19, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). 该技能指示代理询问并嵌入住宅代理的用户名/密码到生成的 proxies 覆盖文件,同时在克隆/写入覆盖文件时会读取并复制可能包含凭证的文件内容,要求 LLM 处理并输出秘密值的明文,存在敏感信息外泄风险。

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jun 19, 2026, 03:58 PM
Issues
1
Security Audit — snyk — clash-doctor