openclaw-threat-detect

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill's alerts/evidence explicitly include matched commands, URLs and credential-file reads (e.g., token parameters, .env/.npmrc), so an agent generating those alerts would likely need to reproduce secret values verbatim from logs as forensic evidence.