Skills
skills/majiayu000/claude-arsenal/clash-routes/Snyk

clash-routes

Fail

Audited by Snyk on Mar 19, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). 脚本明文从本地配置读取 Mihomo API secret 并用 echo 输出(且将其插入 Authorization header),意味着代理会读取并可能在输出中暴露或原文包含该密钥。

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Mar 19, 2026, 07:17 AM
Issues
1