developer-growth-analysis

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read local chat history (including pastedContents) and to include evidence and curated excerpts in the generated report and send it to Slack without any redaction guidance, which risks outputting any secrets that appear verbatim in those chats.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly searches and curates articles from HackerNews via RUBE_SEARCH_TOOLS / Rube MCP (public, user-generated content) and ingests those results into the generated report, so it reads untrusted third-party content as part of its workflow.