recall

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill instructs the agent to read and synthesize raw commit bodies and diffs ("read the actual diff" and "grounded in data"), which would require reproducing any secret values present in those commits/diffs verbatim in its output, creating an exfiltration risk.