newsleopard-api

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill requires the agent to include an x-api-key header (shown as "YOUR_API_KEY") in generated API requests and examples, which encourages embedding the secret verbatim in output rather than using environment/CLI-based auth, creating a high exfiltration risk.