handing-off-sessions

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The template and guidelines require including exact command outputs, absolute file paths, configuration/DB settings, and key results (and the provided gather script collects project files), which can force the agent to read and paste secrets (API keys, DB passwords, tokens) verbatim into the handoff document.