generate-mcp-server

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and instructs embedding API tokens/secret values verbatim in commands and config files (e.g., --bearer-auth "YOUR_TOKEN", SPEAKEASY_API_KEY="", claude_desktop_config.json with "<API_TOKEN>"), which would require the LLM to handle and output secret values directly.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill ingests an OpenAPI spec provided as a path or URL (see "OpenAPI spec | Path or URL to the OpenAPI specification" and the workflow's sources -> inputs location), meaning it can fetch and parse arbitrary public/user-provided specs which the generator and resulting MCP server use to build tools — exposing the agent to untrusted third-party content.