chembl-search

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly tells the agent to ask the user for their Valyu API key and then run a command that embeds the key verbatim (scripts/search setup ) and includes examples that hard-code API keys, forcing the LLM to handle secrets directly.