neo4j
Fail
Audited by Snyk on Mar 8, 2026
Risk Level: HIGH
Full Analysis
HIGH W007: Insecure credential handling detected in skill instructions.
- Insecure credential handling detected (high risk: 1.00). The prompt embeds plaintext credentials (e.g., NEO4J_AUTH=neo4j/password123 and driver auth with 'password123') and shows them being inserted verbatim into Docker commands and driver calls, meaning an agent following it would handle/output secret values directly.
Audit Metadata