edgeone-makers-deploy
Fail
Audited by Snyk on Jun 27, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The prompt explicitly asks the user for an API token and instructs the agent to embed that token verbatim in CLI commands and file writes (e.g.,
edgeone login --token <token>,edgeone makers deploy -t <token>,echo "<token>" > .edgeone/.token), which requires the LLM to handle and output secret values directly.
Issues (1)
W007
HIGHInsecure credential handling detected in skill instructions.
Audit Metadata