github-api@ 1.0.0
github.com/aidong99418/hermes-skills
Scanned Thu, 28 May 2026 13:13:46 GMT
Scan ID crawl-sf22oycpbvp7sulhgjclw2n5 · 3ms
F
SCORE 0 / 100
Verdict: Do not install
4 critical findings.
This skill exfiltrates environment secrets ($GITHUB_TOKEN) plus 4 other issues listed below.
4 critical0 high1 medium7 rules passed
Why grade F?
score · 0 / 100The current grade reflects 4 critical findings (any 2+ CRITs → F).
4 CRIT0 HIGH1 MED0 LOW
To reach a higher grade
- DReach Dtarget score 30
Resolve 3 of your 4 CRIT findings — any single CRIT still keeps you at D.
- CReach Ctarget score 55
Resolve all 4 CRIT findings.
- BReach Btarget score 75
Resolve all 4 CRIT.
- AReach Atarget score 95
Resolve all 4 CRIT.
Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.
Findings · ordered by severity
critSkill references secret env var $GITHUB_TOKENThe skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var $GITHUB_TOKEN
The skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
17
18# curl认证
19curl -H "Authorization: Bearer $GITHUB_TOKEN" \← references $GITHUB_TOKEN — potential credential leak
20 https://api.github.com/repos/octocat/Hello-World
21```
critSkill references secret env var $GITHUB_TOKENThe skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var $GITHUB_TOKEN
The skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
113
114# curl
115curl -H "Authorization: Bearer $GITHUB_TOKEN" \← references $GITHUB_TOKEN — potential credential leak
116 "https://api.github.com/search/repositories?q=stars:>5000+language:python&sort=stars&per_page=30"
117```
critSkill references secret env var $GITHUB_TOKENThe skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.▾
Skill references secret env var $GITHUB_TOKEN
The skill instructions reference `$GITHUB_TOKEN`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
276```bash
277curl -X POST \
278 -H "Authorization: Bearer $GITHUB_TOKEN" \← references $GITHUB_TOKEN — potential credential leak
279 -H "Content-Type: application/json" \
280 -d '{"query": "{ viewer { login name } rateLimit { remaining limit } }"}' \
critHardcoded secret detected: GitHub personal access tokenThe skill body contains what looks like a literal `GitHub personal access token`. Secrets must be read from the environment, never embedded in a published skill — embedded keys leak the moment the skill is mirrored or indexed.▾
Hardcoded secret detected: GitHub personal access token
The skill body contains what looks like a literal `GitHub personal access token`. Secrets must be read from the environment, never embedded in a published skill — embedded keys leak the moment the skill is mirrored or indexed.
14```bash
15# 环境变量方式
16export GITHUB_TOKEN="ghp_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"← GitHub personal access token — must be env-sourced, never inline
17
18# curl认证
medNo capability manifest declaredThe skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.rule: no-manifest▾
No capability manifest declared
The skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.
rule:
no-manifestskillox.io/r/crawl-sf22oycpbvp7sulhgjclw2n5