logo-batch-generator

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and instructs using a command-line flag --api-key (currently a placeholder "REMOVED_GEMINI_KEY"), which encourages embedding an API key directly into generated commands/scripts — forcing the model to handle and potentially output secret values verbatim.