xano-init

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt instructs embedding the Xano auth token into CLI commands (e.g., xano profile create ... -t $(xano profile token) and running API calls), which requires the agent to handle/use the secret as a command argument and can expose it in outputs or logs.