local-finetune
Fail
Audited by Snyk on Jun 20, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The pipeline ingests raw chat history (~/.claude/history.jsonl) and writes message content verbatim into the DB and exported JSONL training files without redaction, which will embed any API keys/tokens/passwords present in history into outputs and fine-tuning data.
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). Runtime LLM context is fed from outsider-authored free text in
claude_historyviaread_json('~/.claude/history.jsonl', ...)wheredisplaybecomescontent, and thentraining_candidatesexportsinstruction/outputinto JSONL messages consumed bymlx_lm.lora.
Issues (2)
W007
HIGHInsecure credential handling detected in skill instructions.
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata