sota-threat-modeling

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt's audit mode explicitly requires including "code excerpt or config line proving the gap" and to identify assets from "secrets handling and config," which would force the model to reproduce secret values verbatim if they exist in those files.