configure-telegram

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill asks the user to paste their Telegram bot token and chat ID and then embeds those secrets directly into config files, curl commands, and example env-vars/tests, which requires the agent to handle and output the secret values verbatim (high exfiltration risk).