docx-style-auditor

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The auditor is instructed to include paragraph text snippets (excerpts) from the .docx verbatim in its JSON report, so if the document contains secrets or credentials the LLM would be required to output those values directly, creating an exfiltration risk.