dreamina-edit-image

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt shows and requires embedding a sessionid cookie (and a placeholder authentication cookie) directly into request headers/curl commands, which forces the LLM to handle and output secret token values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill accepts arbitrary user-provided image URIs (image_uri from the upload_image flow) and calls a public API (https://jimeng.jianying.com) to ingest/process those images, so the agent consumes untrusted third-party/user-generated content as part of its workflow.