securing-agentforce

Fail

Audited by Snyk on Jun 25, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The skill explicitly directs the runner and LLM-as-judge to read raw agent responses and write them into judged results and the HTML report (including responses and failures), which means any leaked PII, session IDs, or credentials appearing in those responses would be handled and output verbatim by the LLM.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Jun 25, 2026, 09:34 PM
Issues
1
Security Audit — snyk — securing-agentforce