granola-auth

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill requires running a local auth flow and reading the resulting .env (containing access/refresh tokens) and asks the agent to display masked token strings, which forces the agent to handle secret values in cleartext (even if only partially revealed) and thus risks secret exposure via the LLM context.