flow-next-export-context

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). Although it doesn't ask the agent to prompt for or embed credentials explicitly, the workflow exports "complete file contents" from the repo into a markdown for external LLMs, so any secrets (env files, keys in code, tokens) present in the repo would be output verbatim and exposed.