public-files

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to output raw JSON responses (including upload_url and download_url from prepare/prepare responses), which commonly contain presigned URLs or tokens and would require the model to emit secret-bearing values verbatim.