learn-history

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt instructs the agent to read and extract user messages from local session logs and then propose concrete documentation/memory entries (and potentially copy content), which could include API keys, tokens, or passwords verbatim from those logs, creating an exfiltration risk.