render-html

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill explicitly requires faithfully embedding source Markdown/JSON (including optional sidecar JSON) into generated HTML and sidecar outputs, which forces the agent to reproduce any secret values present in those files verbatim in its output; while it sanitizes executable HTML, it does not prevent or avoid echoing embedded secrets.