tavus-replica

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's curl examples instruct embedding an API key in request headers (e.g., -H "x-api-key: YOUR_API_KEY"), which encourages placing secret values verbatim into generated commands/requests and thus requires the LLM to handle/output secrets directly.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Create Replica API explicitly accepts user-supplied train_video_url and consent_video_url (e.g., arbitrary S3 URLs) which are user-generated/untrusted videos that the Tavus API ingests to train replicas, so third-party content would be read/interpreted as part of the workflow.