pp-function-health

Fail

Audited by Snyk on Jun 24, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt explicitly tells the user/agent to copy the browser "authorization: Bearer " value and run a command like function-health-pp-cli auth set-token <token> (or pass the token on the CLI / env), which requires embedding the secret verbatim in commands/output and thus risks secret exfiltration.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jun 24, 2026, 03:43 AM
Issues
1
Security Audit — snyk — pp-function-health