building-vulnerability-scanning-workflow

Fail

Audited by Snyk on Jun 21, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt's code examples embed API keys, passwords, bearer tokens, and service account credentials directly into headers and payloads (e.g., access_key/secret_key, API_PASSWORD, SCAN_SERVICE_PASSWORD, snow_token), which requires the agent to accept or output secret values verbatim and thus creates an exfiltration risk.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jun 21, 2026, 04:04 PM
Issues
1
Security Audit — snyk — building-vulnerability-scanning-workflow