lark-vc

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs returning and embedding document tokens (e.g., doc_token, minute_token) in outputs and CLI commands and requires reading an auth/permissions file, which forces the agent to handle and emit secret-like tokens verbatim.