instantly-migration-deep-dive

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt's migration code explicitly accepts SMTP/IMAP credentials (smtp_password, imap_password) and posts them in request bodies and logs, which requires the agent to handle and embed secret values verbatim in API requests/outputs.