labarchive-integration

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill includes examples and workflows that place API keys/passwords directly into config files and command-line arguments (e.g., config.yaml placeholders and a backup command using --password AUTH_TOKEN), which requires the LLM or agent to accept and embed secret values verbatim in generated commands or code, creating an exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to call LabArchives REST API endpoints (e.g., https://api.labarchives.com/api and specific methods like users/user_access_info and notebooks/notebook_backup) to fetch notebook entries, attachments and other user-generated content which the workflows parse and act on (backups, entry creation, uploads), thereby exposing the agent to untrusted third-party content that could contain indirect instructions.