okr-capture

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly requires preserving and outputting the user's original verbatim input ("Giữ nguyên văn gốc" / "## Context gốc") and displays/saves that content, so any secrets the user types would be included in the agent's generated output and files (exfiltration risk).