12-factor-apps

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read files and include "evidence" and code snippets (file:line references) showing patterns such as hardcoded passwords/API keys without any instruction to redact, which would require outputting any discovered secret values verbatim.