a6-plugin-key-auth

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes concrete API key values (e.g., "alice-secret-key-001") and example curl/command snippets that embed those keys directly, instructing the agent to place secret values verbatim into requests and configs, which creates an exfiltration risk.