meta-audit

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly instructs the agent to read and (in verbose mode) include full frontmatter and settings.local.json contents in the report, which can contain API keys/tokens/passwords and therefore requires emitting secret values verbatim.