stress-test

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill enforces verbatim quoting of the user's thesis in every attack, so if a user-provided thesis contains API keys, tokens, or passwords the model is required to reproduce them in its output, creating an exfiltration risk even though the prompt doesn't explicitly request secrets.