A
92/100 First Seen
Feb 19, 2026
Last Scanned
Feb 22, 2026
Findings
1
Score
92/100
MEDIUM 1
Findings (1)
MEDIUM
Benign heading "'@openai/agents:*'\n;\n// Verbose logging\n..." followed by dangerous content (category: credential_access)
L1 Benign heading "'@openai/agents:*'\n;\n// Verbose logging\n..." followed by dangerous content (category: credential_access)
Keep all credentials, MFA tokens, session cookies, API keys, and passwords user-side only. FIX
Ensure section headings accurately reflect the content that follows. Remove headings that could mislead an LLM into treating content differently than intended.
FP?
Likely FP if the heading mismatch is due to inconsistent markdown formatting or a benign section title that happens to contain keywords like system or config.