supabase-audit-buckets-read

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly instructs downloading and recording sensitive file contents and progressive evidence/context writes (with examples showing unredacted secrets), which creates a high risk that secret values will be captured or output verbatim.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). High risk: the skill contains explicit data-exfiltration patterns (commands and instructions to list, download, and collect sensitive files such as DB backups and .env secrets, including curl examples and evidence storage) that enable credential/theft even though no obfuscated backdoor or remote-exec code is present.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly lists, downloads, and samples files from Supabase storage public/private buckets (e.g., public backups/uploads via https://abc123def.supabase.co/storage/v1/object/public/ and API listings), ingesting arbitrary user-provided website/file content which could contain untrusted instructions.