tracekit-auth

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The flow requires capturing and then inserting sensitive tokens (the returned session_id and the user-provided 6‑digit verification code) into commands, which forces the agent to handle and potentially output secret values verbatim, creating an exfiltration risk.