quality-gate

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly requires embedding the full git diff and file excerpts verbatim into task descriptions, tool calls, and arbitrator prompts, which could contain API keys or other secrets and thus forces the LLM to output secret values.