nano-banana

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt instructs collecting and embedding the Gemini API key verbatim (e.g., echo "GEMINI_API_KEY=" into ~/.nano-banana/.env and supports a --api-key flag), which requires the agent to handle user secrets directly and thus risks secret exfiltration.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's init/installation steps run remote-install commands—specifically "git clone https://github.com/kingbootoshi/nano-banana-2-skill.git" (fetches code the CLI executes) and "curl -fsSL https://bun.sh/install | bash" (pipes and runs a remote installer)—so external content is fetched and executed at runtime and is required for the skill.