code-review

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill requires reading code and flagging hardcoded credentials with file:line references and optional code examples but gives no guidance to redact secrets, so the agent may output secret values verbatim.