bmad-os-review-prompt

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). This skill mandates quoting "exact quote" from the reviewed prompt and including verbatim text in findings/tables (e.g., "Exact Quote / Location"), so if the input prompt contains API keys, tokens, or passwords the agent is required to reproduce them in its output, creating an exfiltration risk.