brain-save

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). Yes — the skill explicitly instructs the agent to scan conversation content and save/POST that content (code, integration details, URLs, database structures) and write activity logs and MCP calls using that content, so any secrets present in the conversation would be included verbatim in generated outputs and requests.