wordpress-development

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill includes examples that embed passwords and secret keys directly in command-line arguments and config snippets (e.g., --admin_password="password", define('AUTH_KEY', 'unique-phrase')), which requires the LLM to handle or output secret values verbatim and thus poses an exfiltration risk.