dotnet-file-based-apps

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes a shell example that places a secret value directly on the command line (dotnet user-secrets set "ApiKey" "your-secret-value" --file app.cs), which encourages embedding secrets verbatim in outputs/commands and thus creates exfiltration risk.