uipath-platform

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt contains an explicit insecure pattern—an example of passing a client secret on the command line (uip login --client-secret "") and shows token examples and curl usage that can be instantiated with real tokens, which can cause the LLM to ask for and embed secrets verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Integration Service workflows explicitly call and parse external connector APIs — including an HTTP connector fallback that can call arbitrary URLs — and instruct the agent to read activities, resource metadata, and raw vendor error "Instructions" and use those results to choose actions (see references/integration-service/connectors.md and agent-workflow.md), so untrusted third‑party responses can directly influence tool behavior.