jeecg-onlform

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly requires an X-Access-Token from the user and shows examples embedding that token directly into command-line arguments and HTTP headers (e.g., --token, {'X-Access-Token':''}), which forces the agent to include secret values verbatim in generated commands/code.