shopify-setup

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs copying the Admin API access token and embedding it verbatim in files and curl commands (e.g., .dev.vars with SHOPIFY_ACCESS_TOKEN and the curl -H "X-Shopify-Access-Token: {token}") which requires the LLM/agent to handle secret values directly.