octopus-security-audit

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill explicitly includes "Secrets and credential detection" and example prompts like "Scan for hardcoded credentials" but gives no guidance to mask or avoid reproducing found secrets, so the agent may need to output secret values verbatim (exfiltration risk).