llm-judge

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill instructs agents to read repository and spec contents and return structured facts (and then aggregate/present them) with no instructions to redact secrets, so any credentials found in files would be included verbatim in JSON and passed between agents, creating an exfiltration risk.