ai-model-cloudbase

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt tells the agent to "Get env and credentials" and contains examples that embed API keys/access keys verbatim in code and curl headers (e.g., Authorization: Bearer <YOUR_API_KEY>, apiKey: "<YOUR_API_KEY>", accessKey: "<YOUR_PUBLISHABLE_KEY>"), which requires the LLM to handle and potentially output secrets directly, creating exfiltration risk.