gcp-to-aws

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill explicitly instructs the agent to read Terraform/IaC and state/vars files (e.g., .tfvars, .tfstate) and to generate Terraform/config/scripts/artifacts without specifying redaction or use of environment variables, which creates a realistic risk the LLM will absorb and reproduce secrets verbatim in outputs.