rest-api-automation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples that embed client secrets and bearer tokens directly in curl/PowerShell/JS snippets (e.g., client_secret in the token request and Authorization: Bearer {token}), which encourages the agent to accept and output secret values verbatim.