grepai-config-reference
github.com/yoanbernabeu/grepai-skills
Scanned Thu, 28 May 2026 17:32:19 GMT
Scan ID crawl-jqnwlvgwc6gkqqasy7whmu13 · 2ms
F
SCORE 0 / 100
Verdict: Do not install
4 critical findings.
This skill exfiltrates environment secrets (${OPENAI_API_KEY}) plus 4 other issues listed below.
4 critical0 high1 medium7 rules passed
Why grade F?
score · 0 / 100The current grade reflects 4 critical findings (any 2+ CRITs → F).
4 CRIT0 HIGH1 MED0 LOW
To reach a higher grade
- DReach Dtarget score 30
Resolve 3 of your 4 CRIT findings — any single CRIT still keeps you at D.
- CReach Ctarget score 55
Resolve all 4 CRIT findings.
- BReach Btarget score 75
Resolve all 4 CRIT.
- AReach Atarget score 95
Resolve all 4 CRIT.
Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.
Findings · ordered by severity
critSkill references secret env var ${OPENAI_API_KEY}The skill instructions reference `${OPENAI_API_KEY}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var ${OPENAI_API_KEY}
The skill instructions reference `${OPENAI_API_KEY}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
53
54 # API key (for OpenAI, supports env vars)
55 api_key: ${OPENAI_API_KEY}← references ${OPENAI_API_KEY} — potential credential leak
56
57 # Parallel requests (OpenAI only, for speed)
critSkill references secret env var ${OPENAI_API_KEY}The skill instructions reference `${OPENAI_API_KEY}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var ${OPENAI_API_KEY}
The skill instructions reference `${OPENAI_API_KEY}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
254 provider: openai
255 model: text-embedding-3-small
256 api_key: ${OPENAI_API_KEY}← references ${OPENAI_API_KEY} — potential credential leak
257 parallelism: 8
258store:
critSkill references secret env var ${OPENAI_API_KEY}The skill instructions reference `${OPENAI_API_KEY}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var ${OPENAI_API_KEY}
The skill instructions reference `${OPENAI_API_KEY}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
282```yaml
283embedder:
284 api_key: ${OPENAI_API_KEY}← references ${OPENAI_API_KEY} — potential credential leak
285
286store:
critSkill references secret env var ${DATABASE_URL}The skill instructions reference `${DATABASE_URL}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var ${DATABASE_URL}
The skill instructions reference `${DATABASE_URL}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
286store:
287 postgres:
288 dsn: ${DATABASE_URL}← references ${DATABASE_URL} — potential credential leak
289```
290
medNo capability manifest declaredThe skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.rule: no-manifest▾
No capability manifest declared
The skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.
rule:
no-manifestskillox.io/r/crawl-jqnwlvgwc6gkqqasy7whmu13