cosmic-database

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes repeated code and CLI examples that pass plaintext credentials (email/password) directly (e.g., password="your_password") and thus encourages the LLM to accept and emit secret values verbatim in code/commands, creating an exfiltration risk.