nextjs-lite-passwall

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt tells the user to supply the plaintext password directly on the command line (npx tsx scripts/generate-password-hash.ts your-password-here) and to copy generated secrets into env vars, which encourages exposing and copying secret values verbatim (a high exfiltration risk).