pachca-search

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt explicitly tells the agent to ask the user for a Pachca token and to use it in commands (e.g., via --token or export PACHCA_TOKEN), which would require the LLM to receive and potentially include the secret verbatim in generated commands — an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill instructs running "npx @pachca/cli", which causes npx to fetch and execute the remote npm package @pachca/cli at runtime and the skill depends on that CLI, so this external fetch executes remote code.