skills/aibtcdev/skills/credentials/Snyk

credentials

Fail

Audited by Snyk on Mar 17, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The skill requires passing secrets as CLI flags (e.g., --value, --password) and the get command returns plaintext credential values in its output, which forces the agent/LLM to handle and potentially emit secret values verbatim.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Mar 17, 2026, 04:59 AM

Issues

1