code-review

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill requires concrete code evidence (exact file/line references and snippets) for findings but gives no guidance to avoid or redact secrets, so an LLM doing reviews may be expected to reproduce hard-coded credentials verbatim, creating an exfiltration risk.