codebase-analyzer

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill asks the agent to read files thoroughly and produce precise file:line analyses and data-flow details with no instruction to redact sensitive literals, so the model may need to reproduce secret strings found in code verbatim (exposing API keys, tokens, or passwords).