research-docs

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill mandates including exact character-for-character quotes from parsed documents in the agent's JSON output, which would force the model to reproduce any embedded secrets (API keys, tokens, passwords, cookies) verbatim and thus enables exfiltration.