codeprobe-security

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill scans source for hardcoded secrets and is instructed to produce copy-pasteable fix prompts (and even includes an example showing an explicit API key literal), which implies the LLM may read and reproduce real secret values verbatim in its findings.