Skills
skills/4444j99/a-i--skills/api-design-patterns/Snyk

api-design-patterns

Fail

Audited by Snyk on Mar 9, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt embeds literal API-key and bearer-token examples (e.g., sk_live_abc123, eyJhbGciOiJIUzI1NiIs...) and shows Authorization headers and query parameters that place secrets directly in requests, which encourages or requires including secret values verbatim.
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 9, 2026, 10:09 PM