export

Fail

Audited by Snyk on Jun 17, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The skill fetches and writes every memory's content verbatim (into a Markdown file) and uses environment-derived identifiers, so any API keys, tokens, or passwords stored in memories would be exfiltrated directly in the output.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jun 17, 2026, 04:11 PM
Issues
1
Security Audit — snyk — export