hubspot-incident-runbook

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The runbook includes an explicit aws CLI example that embeds a HubSpot access token directly in a command (--secret-string '{"access_token":"pat-na1-NEW_TOKEN"}') and instructs regenerating/updating tokens, which requires handling or pasting secret values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly fetches and parses live third-party content (e.g., https://status.hubspot.com/api/v2/summary.json and calls to https://api.hubapi.com/...) and instructs the agent to interpret those responses to decide next actions (triage/mitigation), so external, untrusted content can materially influence behavior.