supabase-audit-authenticated

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly requires generating, displaying once, and saving the test user's plaintext password and captured JWTs/JWT-bearing curl commands into evidence/log files, which forces the agent to output secret values verbatim (high exfiltration risk).

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill performs live requests and subscriptions against the target Supabase project (e.g., curl calls to $SUPABASE_URL/rest/v1/users, /orders, storage endpoints and realtime channels) and ingests user-generated data from that arbitrary third‑party URL, so it clearly exposes the agent to untrusted third‑party content.