aigw-auth

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit Kubernetes Secret manifests with stringData fields like apiKey: "sk-..." and TODOs to "Replace with your API key", which requires the agent to insert or output secret values verbatim into YAML—an insecure credential-handling pattern.