review-session

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read session transcripts and "present the full findings — do not summarize or truncate"; if the transcript contains API keys, tokens, or passwords the agent would likely reproduce them verbatim, creating an exfiltration risk.