Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 97% confidence
- Finding
- The finding indicates the implemented skill does more than advertised: it hardcodes and uses MiniMax image/TTS API keys and includes self-modifying or patching behavior that rewrites source functions. Hardcoded credentials can be stolen and abused, while source-rewrite capability increases supply-chain and integrity risk because the skill can alter its own execution path outside the user's expectations.
