api-testing-verification

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill includes explicit curl examples that embed JWTs in Authorization headers and instructs obtaining a real token (from the app/Logcat) and using it in commands, which encourages placing secret values verbatim into generated commands or outputs.