stock-data-assistant

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes examples that pass API tokens directly on the command line (e.g., "--mcp-token sk-your-token-here") and instructs generating configs from .env, which together encourage embedding or echoing secret values verbatim — an insecure pattern that could lead to secret exposure.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The setup script (setup_picoclaw.sh) queries https://api.github.com/repos/sipeed/picoclaw/releases/latest and then downloads/installs the picoclaw binary from https://github.com/sipeed/picoclaw/releases/download/... at runtime, which fetches remote executable code that is subsequently run as a required dependency.