retrodiffusion

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly tells the agent to prompt the user to paste their RETRODIFFUSION_API_KEY and shows patterns that embed that key directly in CLI commands (RETRODIFFUSION_API_KEY= node ...), which requires the agent to accept and handle the raw secret and risks the secret being output or exfiltrated.