stacktree-publish
Fail
Audited by Snyk on Jul 3, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 0.80). The skill includes examples and flags that require embedding secrets verbatim (e.g., --password on the command line and an explicit STACKTREE_API_KEY value), so an agent could be instructed to output or relay secret values directly.
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The skill explicitly describes autonomous payment flows: agents can pay for publishes and provisioning by sending crypto (USDC on Base or Solana via x402, USDC.e on Tempo/MPP) and signing transactions, and it documents endpoints that return 402 which are completed by on-chain payments. It also includes a pay/session flow that yields a Stripe card QR for human payment. These are concrete payment and wallet-signing capabilities (crypto and card payments), not generic tooling, so it grants direct financial execution authority.
Issues (2)
W007
HIGHInsecure credential handling detected in skill instructions.
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
Audit Metadata