code-reviewer

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill requires producing exact code locations and diff-style snippets for findings (including "secrets in code" under security), so if source contains API keys/passwords the LLM would be expected to reproduce them verbatim, creating exfiltration risk.