secrets-management

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes hard-coded example secrets and credentials (API tokens, AWS keys, passwords, and Kubernetes secrets) embedded directly in commands, scripts, and manifests, which would require the LLM to handle or reproduce secret values verbatim—an explicit high-risk exfiltration pattern.