commit
Fail
Audited by Snyk on Mar 9, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The skill requires the agent to include the full text of all prompts verbatim in commit messages, which would force the model to reproduce any secrets present in those prompts (API keys, tokens, passwords) into its output.
Audit Metadata