Missing User Warnings
Low
- Confidence
- 90% confidence
- Finding
- The skill tells users to set `DASHSCOPE_API_KEY` and to save request/response evidence, including `voice_prompt` and `preview_text`, but provides no warning about secret handling or avoiding credential leakage in logs, shell history, or saved artifacts. This increases the chance that API keys or potentially sensitive prompt content are exposed through local files, CI logs, or shared evidence bundles.
