Broken Authentication Testing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). This skill repeatedly instructs constructing requests, commands, and code that include plaintext credentials, session cookies, tokens, and reset tokens (e.g., username/password in POST bodies, Cookie: SESSIONID=..., Authorization: Bearer ...), which requires the agent to handle or emit secret values verbatim.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The content includes explicit, actionable techniques for credential theft, brute-force/credential-stuffing, session/token manipulation, and evasion (IP rotation, forged headers, host header injection) that could be directly abused to gain unauthorized access.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and analyze responses from arbitrary target URLs (e.g., requests.get("https://target.com/login"), POST /login, reading API responses like {"error":"user_not_found"}) and to consume public breached datasets (Have I Been Pwned, SecLists), so it ingests untrusted third‑party content the agent must read/interpret.