validator-check

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). This skill requires reading log files and "copy error details verbatim" (including full Fix Instructions / Fix Skill content) and sending that content to a subagent/Task, so if credentials or tokens appear in logs they would be extracted and output — creating an exfiltration risk even though it doesn't explicitly ask for API keys.