jwt-validate

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly requires the user to provide secrets (JWTs, secrets, PEMs) and demonstrates embedding them directly into shell commands as inline environment variable assignments, which forces the agent to include secret values verbatim in its outputs.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and fetches a JWKS URI (see "Requires the user to provide a secret, PEM public key, or JWKS URI" and the "JWKS verification (Node.js)" example using createRemoteJWKSet in SKILL.md), so it ingests untrusted public JWKS from arbitrary URLs which the agent reads and uses to decide token validity.