file-test-bug

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs the agent to include the complete, unmodified contents of agent-metadata.md and other log files verbatim in the issue body, which can contain API keys, tokens, cookies, or other secrets and therefore forces the LLM to output secrets directly.