configure-openclaw

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill asks the user to paste an Authorization header and then writes that exact header into the config and into a curl test command (AUTH_ARG), which requires the agent/LLM to handle and emit the secret verbatim.