skills/thecraighewitt/skills/dashboard-builder/Snyk

dashboard-builder

Fail

Audited by Snyk on May 13, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 0.90). The skill requires embedding the user's data "as a JS object" in the generated HTML (self-contained), so any secrets present in that data (API keys, tokens, passwords) would be output verbatim in the file, creating a high exfiltration risk.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

May 13, 2026, 08:20 PM

Issues

1

Security Audit — snyk — dashboard-builder