taruvi-backend-provisioning

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly shows and instructs creating/updating secrets with a value field (e.g., create_update_secret(..., value="sk_live_...")) and verifies secret values (public secrets returned verbatim), which forces the agent to embed or surface secret values verbatim in tool calls or output.