code-review

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs reading and reporting file contents and grep matches (including hardcoded-secrets patterns) without redaction, so the agent may extract and output secret values verbatim from source files, causing exfiltration risk.