deploy

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes explicit CLI/config examples that embed API tokens and environment variables inline (e.g., GITHUB_PERSONAL_ACCESS_TOKEN="your-token", VERCEL_API_TOKEN in MCP/Gemini commands and JSON), which encourages the agent to accept and output real secret values verbatim.