code-reviewing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The review workflow explicitly requires reporting findings with "Before (problematic) [original code]" and detailed code snippets for fixes (including secrets/hardcoded credentials flagged as CRITICAL), which would cause the LLM to reproduce secret values verbatim if present in the code.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's mandatory Step 0 "RESEARCH PHASE" explicitly queries external MCP servers (e.g., "perplexity", "context7", "ref", "microsoft-learn", "firecrawl") to build validation context before analysis, meaning it fetches and ingests open/public third‑party content (potentially user-generated/untrusted) as part of its workflow.