skills/mikkelkrogsholm/bookstrap/bookstrap-write/Snyk

bookstrap-write

Fail

Audited by Snyk on Apr 16, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and instructs use of command-line credentials (e.g., --user root --pass root) which requires embedding secret values verbatim in generated commands/outputs, an insecure pattern that can cause secret exfiltration.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Apr 16, 2026, 08:06 AM

Issues

1