dotnet-build-analysis

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill includes an explicit example that passes a personal access token on the command line (dotnet nuget update source ... --password $PAT --store-password-in-clear-text), which encourages embedding secrets in commands/output and thus risks exfiltration.