repo-intake-and-plan

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill requires extracting and listing "documented command" strings from README and project files verbatim, so if those files contain API keys, tokens, cookies, or passwords the agent would be expected to reproduce them, creating an exfiltration risk.