claude-code-copy-markdown

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). Because the skill generates a heredoc command that embeds the previous response verbatim (piping it to pbcopy), any API keys, tokens, or passwords present in that response would be output exactly as-is, enabling exfiltration.