zeabur-update-service

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs adding/updating environment variables by embedding key=value pairs directly on the command line (e.g., --key "KEY1=value1"), which would require the LLM to include secret values verbatim in generated commands — a direct exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill mandates running remote code via npx (e.g., "npx zeabur@latest"), which fetches and executes an npm package at runtime and is therefore an external dependency that can directly execute remote code.