pdf-manipulation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill includes examples and CLI commands that embed plaintext passwords (e.g., "mypassword", "--password=PASS", user_pw) and shows code that takes password variables, which would require the agent to include secret values verbatim in generated commands or code, creating exfiltration risk.