arize-experiment

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill instructs the agent to check .env or ask the user for their Arize API key and to create/update profiles with it, which can require the LLM to accept and insert the secret verbatim (e.g., into profile-creation commands), creating an exfiltration risk.