Fail
Audited by Snyk on Feb 19, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The skill explicitly shows CLI commands and JSON cookie payloads that require embedding auth tokens/cookie values verbatim (e.g., twitter auth <auth_token> and --cookies-json '[{"name":"auth_token","value":"..."}]'), forcing the agent to handle and potentially output secret values directly.
Audit Metadata