skills/legout/data-platform-agent-skills/data-engineering-storage-remote-access-integrations-iceberg/Snyk
data-engineering-storage-remote-access-integrations-iceberg
Fail
Audited by Snyk on Feb 16, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 0.80). The prompt includes examples of hardcoded credential fields (e.g., "s3.secret-access-key", "s3.access-key-id", and explicit "minioadmin" defaults) that encourage embedding secrets verbatim in configuration/code, creating an exfiltration risk even though it mentions env vars as preferable.
Audit Metadata