pinecone

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt's code examples show initializing Pinecone with an inline api_key string (e.g., Pinecone(api_key="your-api-key")), which encourages embedding actual API keys/secrets verbatim in generated code or commands and therefore creates an exfiltration risk.