cloudflare-images

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples and templates that place API tokens, signing keys, and account IDs directly into curl commands and code (e.g., Authorization: Bearer <API_TOKEN>, signingKey = 'YOUR_SIGNING_KEY') and instructs users to "edit with your account ID and API token," which encourages embedding secrets verbatim into outputs/commands.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests arbitrary external and user-provided content (e.g., "Upload via URL" POST with url=https://..., Workers examples that fetch imageURL, the Batch API migrateImagesFromURLs which posts arbitrary imageUrls, and Direct Creator Upload user uploads), so the agent will fetch and process untrusted public/UGC content as part of its workflow.