ieee-navigate-pages

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). The prompt includes an explicit instruction to override navigator.webdriver ("initScript") to hide automation (evade bot detection), which is a deceptive behavior outside the stated purpose of simple pagination/sorting.

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill instructs the agent to read and preserve full URL query parameters and then construct/navigate to a new URL (returned/used verbatim), so if those parameters contain secrets (tokens/session IDs) the agent will include them in its outputs/tool calls, creating an exfiltration risk.