analyzing-ios-app-security-with-objection

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs dumping keychain items, querying credential databases, searching memory for strings like "password", "api_key", and "Bearer", and hooking methods to --dump-args, all of which retrieve secrets that the agent would need to output verbatim to report findings.