test-plan

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly instructs the agent to parse and "Extract test credentials" and to include test user emails and plaintext passwords in the generated plan, which requires outputting secret values verbatim and therefore poses an exfiltration risk.