optimize

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The scan sub-agent brief explicitly requires returning verbatim quotes from outcome.json and trace messages as evidence, which forces the LLM to reproduce any secret tokens or passwords present in those files and thus creates an exfiltration risk.