b2c-cip

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt's examples and usage explicitly show passing --client-id and --client-secret on the command line (placeholders), so an agent generating runnable commands would be expected to embed user-supplied secret values verbatim, creating an exfiltration risk.