repomix

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). Repomix packages repository files verbatim and can output or copy the resulting bundle (including any hardcoded API keys, .env entries, or other secrets) unless ignores/security checks are applied, so an agent using this skill may need to emit secret values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly supports fetching and packaging arbitrary public repositories (e.g., "npx repomix --remote owner/repo" in SKILL.md and the scripts/repomix_batch.py which accepts remote GitHub URLs like https://github.com/owner/repo), so it ingests untrusted, user-generated third‑party content for AI consumption.