workos-pipes

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt explicitly instructs running commands like echo $WORKOS_API_KEY (and otherwise inspects/copies secrets) which requires the agent to read and output the API key value verbatim, creating exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly requires a runtime "WebFetch" of the WorkOS docs and states "The documentation is the source of truth" (https://workos.com/docs/pipes/providers and https://workos.com/docs/pipes/index), so external content fetched at runtime can directly override the skill's instructions and is a required dependency.