threadpilot-cli

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples that pass plaintext passwords on the command line (e.g., --password "") and instructs login with user-supplied credentials, which requires the LLM to handle or emit secret values verbatim—an explicit high-risk pattern.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The required runtime workflow includes scripts/threadpilot rules --subreddit ChatGPT (and similar account/read/search steps), which necessarily fetches subreddit rules/content from Reddit (public web content authored by outsiders) and passes it into the agent’s AI authoring context.