co-redteam-orchestrated-security-discovery
Fail
Audited by Snyk on Jun 19, 2026
Risk Level: CRITICAL
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 0.90). The workflow explicitly captures and reports command outputs, PoC payloads, and evidence chains (including extracted credentials, flags, or hardcoded secrets) and therefore requires the agent to handle and potentially output secret values verbatim, creating an exfiltration risk.
CRITICAL E006: Malicious code pattern detected in skill scripts.
- Malicious code pattern detected (high risk: 1.00). The skill explicitly teaches and automates offensive actions — structured discovery plus a feedback-driven exploitation loop that includes remote code execution, command injection, and credential/data exfiltration examples — making it highly usable for malicious abuse despite claimed authorization constraints.
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly directs the agent to draft and execute multi-step exploit plans (BASH/PYTHON commands), run those commands in target environments (containers/sandboxes), and perform actions that read/modify system state and escalate privileges (examples include reading /etc/passwd, confirming root in a container), which encourages modifying/compromising the host or target machine.
Issues (3)
W007
HIGHInsecure credential handling detected in skill instructions.
E006
CRITICALMalicious code pattern detected in skill scripts.
W013
MEDIUMAttempt to modify system services in skill instructions.
Audit Metadata