wiki-researcher

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill mandates reading real implementation and showing evidence (file paths, code references, call chains and code excerpts) without any safeguard, so it can force the agent to output verbatim code lines that may contain API keys, tokens, or passwords and thus risks secret exfiltration.