container-security

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's report template and "Evidence: " requirement would lead the LLM to reproduce plaintext secrets found in Dockerfiles/manifests (e.g., Kubernetes secrets, env vars) verbatim, and the prompt gives no instructions to avoid or redact such secret values.