broker

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). This skill requires users to supply raw API Key, API Secret, and Passphrase (including a plaintext file format) and implies the agent will use them to create authenticated requests, meaning the LLM would need to handle secret values and could include them verbatim (high exfiltration risk).