skills/dykyi-roman/awesome-claude-code/check-docker-security/Snyk

check-docker-security

Fail

Audited by Snyk on Mar 17, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The skill explicitly detects hardcoded secrets and instructs the agent to include the "Current" insecure configuration (e.g., ENV DB_PASSWORD=secret123, ARG GITHUB_TOKEN=ghp_xxxxxxxxxxxx) in output, which requires reproducing secret values verbatim.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Mar 17, 2026, 09:57 AM

Issues

1