add-key

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill asks the user for an admin API key and instructs embedding Authorization headers with that key (and to display the newly generated API key verbatim to the user), which requires the LLM to handle and output secret values directly, creating exfiltration risk.