scan-frontend-patterns

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt requires including actual code snippets from project files verbatim (with file:line references) so any embedded API keys, tokens, or passwords in those files would be output directly, creating a high exfiltration risk.