setup-renovate-for-tuist

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt tells the agent to ask the user for a GitHub PAT and shows using it verbatim in a shell command (RENOVATE_TOKEN= renovate ...), which requires the LLM to handle and output secret values directly.