bun-macros

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly shows macros reading process.env values and inlining them (e.g., env("API_URL") and requireEnv("API_SECRET")), which would cause secret environment variables to be emitted verbatim into generated/bundled output, creating an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Async Macros" example defines fetchSchema which uses fetch("https://api.example.com/schema.json") and inlines the fetched schema at build time, meaning external/untrusted HTTP responses can be read and materially influence generated code and subsequent build actions.