subagents-tasks-run

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill reads task files and forwards their full contents and "Next sub-agent" commands to sub-agents, appends outputs/audit logs, and writes updated files back—so any secrets embedded in task files or sub-agent outputs would be handled and reproduced verbatim, creating an exfiltration risk.