Skills
NYC
skills/smithery/ai/scientific-schematics/Snyk

scientific-schematics

Fail

Audited by Snyk on Feb 16, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt contains explicit examples that embed API keys directly (e.g., --api-key "sk-or-v1-..." and api_key="your_openrouter_key"), which encourages placing secret values verbatim into commands/code and thus requires the LLM to handle/output secrets directly.
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 03:27 AM