instagram-post

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit examples and configuration that place API keys directly in HTTP headers and curl commands (e.g., "Authorization: Bearer YOUR_API_KEY" and "x-publora-key: sk_your_api_key"), which requires the LLM to insert secret values verbatim into outputs and is therefore high risk.