mcp-integration

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill's examples embed environment variables with an explicit token-like value (e.g., "ghp_your_token_here") and produce configs containing secret fields, which encourages the model to output secret strings verbatim rather than only referencing env var names.