cloudflare-hyperdrive

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes numerous examples and CLI commands that embed database connection strings with plaintext usernames and passwords (e.g., --connection-string="postgres://user:password@...") which requires the agent to handle and potentially output secret values verbatim, creating an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime examples explicitly connect to external databases via env.HYPERDRIVE (e.g., queries like "SELECT * FROM users LIMIT 10" and returning Response.json({ users: ... })), which means the agent will ingest and interpret untrusted, potentially user-generated content from third‑party databases at runtime.