arcgis-rest-services

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit examples that set esriConfig.apiKey = "YOUR_API_KEY" and register tokens with token: "YOUR_TOKEN", which instructs embedding secret API keys/tokens directly into generated code (verbati m secret handling) and thus poses an exfiltration risk.