SQL Injection Testing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs extracting and reporting sensitive data (usernames, passwords, database dumps, and authentication-bypass proof-of-concepts), which requires the agent to include secret values verbatim in its outputs.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content is high-risk: it is an actionable, step-by-step SQL injection exploitation guide that includes authentication bypass techniques, explicit payloads to extract credentials and schema information, and out‑of‑band data exfiltration methods (DNS/HTTP/SMB), which enable unauthorized access and data theft.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly requires targeting arbitrary web application URLs and inspecting HTTP responses and database error messages from those external sites (see "Required Access: Target web application URL" and the workflow sections on detection/extraction), so it consumes untrusted third‑party content the agent would read and interpret.