File appears to expose a hardcoded API secret or token.
Critical
- Code
- suspicious.exposed_secret_literal
- Location
- EXAMPLES.md:235
Security audit
Security checks across malware telemetry and agentic risk
This is an instruction-only security audit skill that asks an agent to inspect code for vulnerabilities and secrets, with no evidence of hidden execution or data theft.
Install only for code you are authorized to audit. When using it on real repositories, clearly limit the target scope and ask the agent to mask or truncate discovered secret values in reports; rotate any real credentials it finds in source control.
64/64 vendors flagged this skill as clean.
Detected: suspicious.exposed_secret_literal