testing-interactive-gpg

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The expect script usage and examples pass the GPG passphrase (and other identity values) as literal command-line arguments and even include a default/test passphrase, which requires the agent to include secret values verbatim in generated commands (high exfiltration risk).