macos-distribution

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes an example notarytool command that embeds an app-specific password on the command line (--password "app-specific-password"), which is an insecure pattern that would require the LLM to handle/output secret values verbatim.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly includes StoreKit APIs and code for implementing in‑app purchases and subscriptions (SubscriptionOfferView, Transaction.currentEntitlements, subscriptionStatusTask, AppTransaction, and purchase/transaction handling). These are payment/transaction primitives used to execute and manage purchases/subscriptions (i.e., moving money via the App Store flow), so it provides direct financial execution capability rather than a generic tool.