parallel-web-extract

[Skill Scanner] Outbound data post or form upload via curl/wget detected Benign in intent as a documented API integration for content extraction, but it carries moderate security risk due to credential handling (reading from local env file and echoing requests to stdout). To improve, avoid exposing credentials in shell history, validate inputs, pin TLS, and consider using a dedicated configuration mechanism (e.g., environment variables at runtime with restricted access) and avoid printing sensitive headers or responses in insecure contexts. LLM verification: Benign-to-moderate risk with standard integration patterns. The main concerns are API key protection and third-party data handling. Recommendations include using robust secret management (CI/secrets manager or runtime env vars with restricted logging), redacting keys in logs, and validating the external API’s data retention and privacy policies. No evidence of malware or covert exfiltration beyond the documented API call.