implementing-zero-trust-network-access

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt's example commands and JSON include placeholders like CLIENT_SECRET and show them being passed directly as CLI flags or embedded in requests (e.g., --oauth2-client-secret, ClientSecret), which encourages the agent to insert and output secret values verbatim — an insecure pattern.