pp-whoop

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows storing an access token via a command-line invocation ("whoop-pp-cli auth set-token YOUR_TOKEN_HERE"), which requires embedding the secret as a literal CLI argument (an explicit high-risk pattern for secret exposure), even though an env-var option is also mentioned.