sales-zerobounce

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill documents and demonstrates using an api_key query parameter (e.g., GET /v2/validate?api_key=YOUR_KEY) and instructs users to "copy your API key" for API calls, which encourages embedding real API keys verbatim in commands/requests and therefore risks secret exfiltration.