mimir-memory

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes an explicit example of passing an API key as a command-line argument ("npx memory-mimir setup --api-key sk-mimir-xxx"), which encourages embedding secrets verbatim in commands/outputs and therefore creates an exfiltration risk.