flowstudio-power-automate-mcp

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's helper code and examples require inserting a JWT API key directly into request headers (TOKEN / "x-api-key") and into generated code/requests, which forces the agent to handle and potentially output secret values verbatim, creating an exfiltration risk.