investigating-a-codebase

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill requires reading and reporting exact file contents and code snippets (with paths and line numbers) as definitive evidence, which would force the LLM to reproduce any embedded secrets (API keys, tokens, passwords) verbatim if they exist in the codebase, creating an exfiltration risk.