skills/tyrchen/geektime-bootcamp-ai/pg-data/Snyk

pg-data

Fail

Audited by Snyk on Mar 25, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and instructs executing psql with an inline PGPASSWORD (PGPASSWORD=postgres psql ...), which encourages embedding a secret/password verbatim in generated shell commands, an insecure credential-handling pattern.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Mar 25, 2026, 12:10 PM

Issues

1