solo-review

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt instructs the agent to grep for hardcoded secrets (e.g., sk_live, password=) and to include exact log/file lines as evidence and security findings, which encourages reading and potentially emitting secret values verbatim in the report, creating an exfiltration risk.