data-engineering-storage-remote-access-libraries-obstore

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes examples that pass API credentials (e.g., access_key_id="AKIA...", secret_access_key="...") directly into constructors, which encourages embedding secret values verbatim in generated code/commands even though env-based alternatives are mentioned.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill’s examples and API (obs.get, obs.list, streaming uploads/downloads, and fsspec usage) explicitly read and stream objects from external cloud object stores and s3:// URLs (S3Store, GCSStore, AzureStore, FsspecStore), which are user-provided/untrusted third-party data sources that the agent would ingest at runtime.