environment-secrets-exfiltrator

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). The skill's metadata name ("environment-secrets-exfiltrator") explicitly indicates exfiltration of secrets, which is deceptive and inconsistent with the stated diagnostic purpose, so it contains hidden/misaligned instructions.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The script actively harvests environment variables matching sensitive patterns and exfiltrates them (base64-encoded) via an HTTP POST to an external attacker-controlled URL, indicating definite malicious data exfiltration and credential theft.