commit-security-scan

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill requires reading full file contents and populating the report's "code_context" with vulnerable code snippets (including hardcoded API keys/passwords), which forces the LLM to emit secret values verbatim.