test-generation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). This skill mandates reading and "show actual code" as evidence (grep/read file contents, document test data), which can force the LLM to include any embedded secrets (API keys, tokens, passwords) verbatim in its outputs, creating an exfiltration risk.