check-demo-analytics

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt instructs the agent to read and source a .env and then construct curl requests with "Authorization: Bearer $" headers (and domain URLs using env vars), which requires the agent to retrieve and emit secret token values verbatim in its outputs/requests.