pentest-secrets-exposure

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt instructs discovery, validation, and documentation of found credentials (including testing them with tools like curl and reporting their scope), which requires the agent to include secret values verbatim in commands/reports and thus risks exfiltration.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and analyzes arbitrary target URLs and web artifacts (e.g., nuclei_exposure, ffuf_backup_scan, secretfinder_scan, secretfinder_scan for JS/source-maps, and error_trigger responses) which ingest untrusted public web content and user-generated responses for interpretation by the agent.