immune

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill ingests arbitrary text/code into its scan and then returns "Corrected Output" and logs (and injects the raw content into XML prompts) without any instruction to redact or avoid echoing secrets, so any API keys/passwords in the input could be reproduced verbatim.