Missing User Warnings
Medium
- Confidence
- 90% confidence
- Finding
- The skill instructs users to configure long-lived cloud credentials directly in the CLI but does not include any guidance on secure handling, least privilege, rotation, or avoiding exposure in shell history and shared environments. In a cloud-management skill, this omission increases the chance of credential leakage or unsafe operational practices that could lead to unauthorized access to Tencent Cloud resources.
