llm-top-10

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill instructs the reviewer to include "Evidence" as code/configuration excerpts and to grep for hardcoded secrets/system prompts, which can require copying secret values verbatim into the report (no redaction requirement), so it effectively encourages outputting secrets.