Auto-Redbook

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs extracting the full XHS_COOKIE from browser devtools and placing it into a .env (copy/paste of a secret), which encourages handling secret cookie values verbatim and could cause the agent to echo or embed them.