zoho

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt explicitly shows curl commands and setup steps that require pasting client_id, client_secret, authorization codes, and refresh_token values (and instructs creating a .env with those secrets), meaning an agent would need to handle and potentially output these secret values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's standup pipeline (scripts/standup-summarizer.sh and SKILL.md) explicitly fetches and downloads user-generated meeting recordings from the Zoho Meeting API (GET /meeting/api/v2/{zsoid}/recordings.json and the recording downloadUrl), then transcribes and summarizes those recordings — meaning untrusted third-party content is ingested and used to drive downstream summaries/actions.