clean-code

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill's workflow requires the agent to "show the specific code" when reporting issues and to review user-pasted code/PRs, which can cause the LLM to verbatim reproduce any secrets embedded in that code—creating an exfiltration risk.