labarchive-integration

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt contains examples that place API keys/passwords directly into config files and command-line arguments (e.g., config.yaml with access_password and commands like "--password AUTH_TOKEN"), which would require an agent to insert secret values verbatim into outputs and thus poses a high exfiltration risk.