ctx-cloud-status

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill asks the agent to read the local sync config (including the API token), run a curl health check with an Authorization header (which encourages embedding the token in a command) and only masks the token for display (revealing the last 4), so it requires handling secrets and risks exfiltration if the token is ever inserted verbatim into generated commands or outputs.