reedle

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and instructs embedding Personal Access Tokens and cookies directly into commands and MCP parameters (e.g., reedle auth token rdk_xxx, REEDLE_TOKEN=rdk_xxx reedle list, --cookie "..."), which requires the agent to handle and output secret values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests arbitrary public web content (e.g., "reedle read " and MCP tools like mcp__reedle__reedle_read, reedle_read_youtube, reedle_read_bilibili) so the agent will read and act on untrusted third-party pages/transcripts which could contain instructions influencing subsequent actions.