deepscan-login

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly instructs embedding raw API keys/tokens into generated commands and headers (e.g., python scripts/auth.py save-token {api_key} and Authorization: Bearer {token}), which requires the LLM to handle and output secrets verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). scripts/auth.py calls the public API at https://data.cli.im/x-deepscan and consumes untrusted response fields (authUrl, qrcodeBase64, apiKey) that the SKILL.md workflow (Step 2/Step 4) parses and uses to drive login, QR generation, and subsequent actions—so third‑party content can materially influence agent behavior.