analyzing-android-malware-with-apktool

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly requires extracting and reporting "extracted strings and potential IOCs" (hardcoded URLs, IPs, C2 indicators), which may include hardcoded API keys, tokens, or passwords that the LLM would output verbatim, creating an exfiltration risk.