import

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt instructs the agent to obtain an auth token (via generate_auth_token or from the user) and embed it directly into a CLI command (--auth-token {TOKEN}), which requires the LLM to include secret values verbatim in its output.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires running "npx @subframe/cli@latest import ..." which fetches and executes remote code from the npm registry at runtime and is required to perform the import, so this external dependency can directly execute remote code.