secure-key-manager

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's examples and CLI usage instruct embedding vault passwords and API keys directly in command-line arguments and code (e.g., -p "your-password", -v "BSAxxxxx...", manager.unlock("your-password")), which requires handling/verbatim inclusion of secrets and thus creates an exfiltration risk.