skills/zephyrwang6/myskill/gemini-image/Snyk

gemini-image

Fail

Audited by Snyk on Mar 20, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). It tells the agent to read the API key from config/secrets.md and use it verbatim in a curl Authorization header, which requires the model to handle/output the secret directly.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Mar 20, 2026, 12:29 PM

Issues

1