testany-import-git

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly instructs the agent to present the plaintext webhook_secret (returned once on enable/regenerate) to the user so they can copy it into the Git hook config, which requires outputting a secret verbatim and poses an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill directly browses and ingests repository files from third-party GitHub installations (see "Phase 2: ... 用 testany_browse_git_tree + testany_preview_git_file" and "Phase 3: ... selected_files ... testany_create_git_import"), so untrusted user-generated repo content can be read and used to drive imports and subsequent actions.