workos-knowledge-patch

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt contains example code that embeds API keys/secrets directly into constructors and parameters (e.g., apiKey: 'sk_...', WorkOSClient(api_key="sk_1234")), which requires including secret values verbatim and is an insecure credential-handling pattern.