tech-debt-report

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly scans for hardcoded secrets/keys and the example report includes an inline hardcoded API key snippet, so the agent is likely to extract and output secret values verbatim (exfiltration risk).