meta-prompting

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). This skill explicitly requires faithfully rewriting the user's raw prompt and piping it verbatim to a clipboard script, so if the draft contains API keys, tokens, or passwords the agent will reproduce them in its output/clipboard, creating a clear exfiltration risk.