sdd-verify

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill mandates retrieving full artifact contents (mem_get_observation) and persisting/returning a full verification report (and test/build outputs) with no instructions to redact secrets, so any API keys/passwords present in artifacts or outputs would be included verbatim, creating an exfiltration risk.