exa-incident-runbook

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The runbook includes commands that decode and print secrets (kubectl get secret ... | base64 -d) and instructs updating secrets with a literal (--from-literal=api-key=NEW_KEY), which requires handling/embedding secret values verbatim and is therefore insecure.