secrets

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to parse user-provided connection strings (which contain usernames/passwords) and immediately construct JSON/CLI commands (e.g., --value or connection strings) embedding those credentials verbatim, forcing the LLM to handle and output secret values directly.