upgrade-analysis

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly greps for hardcoded secrets and asks the agent to cite file/line references and include concrete before/after code, which would cause any literal secret values found in the repo to be reproduced in the agent's output.