delegation-principle

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly tells the agent to read state files and "pass complete context to subagent" via the Task tool, which can force the LLM to include any secrets from those files verbatim in outgoing task payloads, creating an exfiltration risk.