sst-infra

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes examples that pass secret values directly as command-line arguments (e.g., sst secret set BedrockApiKey sk-abc123) and describes workflows that could lead the agent to ask for and embed secret values verbatim, creating an exfiltration risk.