dotnet-secrets-management

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt contains multiple literal secret-like values (e.g., connection strings, API keys like "SG.dev-key-here" and "sk-live-abc123def456") and example commands that set secrets verbatim, which would require the LLM to emit secret values directly and thus poses a high exfiltration risk.