skills/billpeet/agent-skills/azdevops/Snyk

azdevops

Fail

Audited by Snyk on Apr 30, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows passing a personal access token on the command line (azdevops setup --token ) and as a literal environment variable placeholder, which encourages embedding secrets verbatim in commands/outputs.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Apr 30, 2026, 10:33 PM

Issues

1