hubspot-connect

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs the agent to prompt the user for their HubSpot access token and to write/echo that token into .env and example command snippets (HUBSPOT_ACCESS_TOKEN=pat-na1-...), which requires outputting the secret verbatim.