api-provider-setup

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill's templates and instructions require placing API keys directly into the JSON config (apiKey fields) and would lead an agent to accept and embed secret values verbatim into generated config or commands.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs configuring and calling external third-party model APIs via baseUrl/provider entries (examples: "anapi", "zai", "openrouter-vip") and explicitly tests/uses those providers (e.g., session_status(model="新供应商/模型id")), meaning the agent will fetch and interpret untrusted third-party model responses that can influence its subsequent actions.