git-committer

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt instructs the agent to inspect file contents and represent them in suggested commit messages, which can cause verbatim inclusion of secrets found in the repository (e.g., API keys, tokens, passwords), so it poses a high exfiltration risk.