Skills
skills/sethdford/claude-plugins/API Documentation Generator/Snyk

API Documentation Generator

Fail

Audited by Snyk on Feb 16, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The skill's examples and templates include plaintext API keys, bearer tokens and passwords in cURL and code snippets (e.g., "Authorization: Bearer sk_test_abc123...", "SecurePass123") and instructs embedding authentication headers/examples, which encourages outputting secrets verbatim.
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 11:00 AM