review-local

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill requires reading full local diffs and file contents and produces inline consolidated reports without any redaction rules, so it may include API keys/passwords or other secrets verbatim, creating an exfiltration risk.