bmad-editorial-review-prose

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt requires echoing "The exact original passage" verbatim in the output table (Original Text), so if the input content contains API keys/passwords/cookies those secrets would be reproduced in the agent's output, enabling exfiltration.