skill-reviewer

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read and quote text from SKILL.md, scripts, and reference files (including line-level excerpts) and produce a diagnostic report, which would require reproducing any embedded secrets verbatim if they exist—creating an exfiltration risk.