A
92/100 First Seen
Feb 18, 2026
Last Scanned
Feb 22, 2026
Findings
1
Score
92/100
MEDIUM 1
Findings (1)
MEDIUM
Screenshot or screen capture with transmission
L369 Detects screenshot/screen capture tools combined with upload or transmission
screenshot + POST /users/{{id}}/tokens to create API FIX
Block the ability to read and transmit contents of configuration files (.env, config.json, settings.yaml). Implement file path validation to prevent access to sensitive config files.
FP?
Likely FP if the skill reads config files to configure itself locally without transmitting the contents externally.