spec-miner

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). Because the skill requires grounding observations in actual code evidence and uses Read/Grep patterns to locate configuration and environment usage, the agent is likely to read and reproduce hard-coded credentials or tokens verbatim in its outputs unless explicit redaction rules are enforced.