my-history-insight

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill reads raw user "role":"user" messages from local session .jsonl files and outputs summaries and extracted content, so any API keys or passwords included in those messages could be reproduced verbatim in the report, creating an exfiltration risk.