motion

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill includes examples that embed tokens directly into command-lines, URLs, and config (e.g., ?token=YOUR_TOKEN, curl ... | bash, and an env TOKEN in JSON), which instructs or models including secrets verbatim in generated output and is therefore high-risk.