service-communication-audit

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt requires the auditor to include the "EXACT current code" and file:line snippets in findings and tickets, which would force the model to reproduce any embedded secrets (API keys, tokens, passwords) verbatim if present, creating a high exfiltration risk.