xrefs

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill includes queries that select and return literal string contents (e.g., string_value, string_content) and even searches for "%password%", which would cause the agent to output any discovered secrets or hardcoded credentials verbatim — enabling exfiltration.