shopify-local-dev-loop

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes example commands and config lines that embed API credentials (e.g., X-Shopify-Access-Token: shpat_xxx and client_id = "your_api_key_here") which encourages placing real secrets verbatim into commands/configs, creating an exfiltration risk.