lets-heavy-discussion

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill requires the agent to read the codebase and record findings verbatim into TRANSCRIPT.md (and persist state), so if secrets or API keys are present in files the agent will include those secret values in its output, creating an exfiltration risk.