powerskills-system

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly includes an action to read and return environment variable values (env --name ...) which can contain API keys, tokens, or passwords and thus requires the LLM to handle and potentially output secret values verbatim, with no instructions to avoid or mask them.