tushare-api

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt includes examples that embed the API token directly in code and curl requests (e.g., ts.pro_api('your_token_here') and "token":"your_token"), which encourages or requires the agent to place secret values verbatim into generated commands/requests.