sirv-ai-studio

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit examples and templates that embed an API secret in Authorization headers and code (e.g., "Authorization: Bearer sk_live_YOUR_API_KEY" and API_KEY = 'sk_live_YOUR_API_KEY'), which instructs the LLM to place secret values verbatim into generated commands/code.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's MCP tools and REST API explicitly accept and process arbitrary public image URLs (e.g., the sirv_remove_background/sirv_generate parameters and REST examples using "image_url": "https://example.com/product.jpg"), meaning the agent will fetch and ingest untrusted third-party content from the open web.