bd-cli

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly shows and endorses embedding API keys in commands and HTTP headers (e.g., --api-key <KEY> and curl -H "x-bitdrift-api-key: <key>"), which instructs including secret values verbatim in generated output and therefore poses a direct exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to fetch and read user-generated data from the third‑party bitdrift service (e.g., bd timeline logs, bd workflow charts, bd issue list and direct API calls to https://api-public.bitdrift.io), so untrusted session logs/issues from external users are ingested and can materially influence subsequent actions.