Skills
skills/legout/data-agent-skills/data-engineering-storage-remote-access-libraries-obstore/Snyk

data-engineering-storage-remote-access-libraries-obstore

Fail

Audited by Snyk on Mar 1, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 0.90). The prompt includes examples that pass API credentials (e.g., access_key_id="AKIA...", secret_access_key="...") directly into constructors, which encourages embedding secret values verbatim in generated code/commands even though env-based alternatives are mentioned.
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 1, 2026, 03:18 PM