pdf

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt contains examples that embed plaintext passwords directly in code and command-line invocations (e.g., writer.encrypt("userpassword","ownerpassword") and qpdf --password=mypassword), which encourages including secret values verbatim and thus creates an exfiltration risk.