council

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt requires agents to read repository files and include "concrete examples" and code patterns as evidence, which can force them to copy secrets or API tokens verbatim from configs or code into their output.