moru-python

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt includes examples that put secrets directly into code (e.g., envs={"API_KEY": "secret"}) and uses literal IDs, which encourages embedding secret values verbatim in generated code/commands rather than referencing secure env vars or external auth mechanisms.