serverccn2-project-editor

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read, diff, report, and save server configuration files (server.properties/configByMode) and to present property values and diffs to the user, which can require including sensitive config values (DB connection strings, host:port entries, ssl references, or any embedded secrets) verbatim in outputs or memory, creating an exfiltration risk.