labarchive-integration

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes examples that place API credentials and passwords directly in files and command-line arguments (e.g., config.yaml with access_password and commands like --password AUTH_TOKEN), which encourages embedding secret values verbatim into generated commands/code and thus creates an exfiltration risk.