performance

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt mandates providing file:line evidence for every claim and to read many repository files and traces, which can force the model to reproduce exact file contents (including any embedded API keys or passwords) verbatim as evidence, creating an exfiltration risk.