contentstack-delivery-sdk-assistant

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly asks the agent to collect apiKey/deliveryToken from the user and says "If the user provides real credentials, use them" (embedding them into generated initialization code), which requires the LLM to output secrets verbatim and creates exfiltration risk.