stacktree-publish

Fail

Audited by Snyk on Jul 3, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 0.80). The skill includes examples and flags that require embedding secrets verbatim (e.g., --password on the command line and an explicit STACKTREE_API_KEY value), so an agent could be instructed to output or relay secret values directly.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The skill explicitly describes autonomous payment flows: agents can pay for publishes and provisioning by sending crypto (USDC on Base or Solana via x402, USDC.e on Tempo/MPP) and signing transactions, and it documents endpoints that return 402 which are completed by on-chain payments. It also includes a pay/session flow that yields a Stripe card QR for human payment. These are concrete payment and wallet-signing capabilities (crypto and card payments), not generic tooling, so it grants direct financial execution authority.

Issues (2)

W007
HIGH

Insecure credential handling detected in skill instructions.

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
HIGH
Analyzed
Jul 3, 2026, 10:15 AM
Issues
2
Security Audit — snyk — stacktree-publish