agent-evaluation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill mandates including "direct quote or file:line reference" as mandatory evidence and instructs the agent to read files from workspace/memory, which forces the LLM to reproduce any secret strings found verbatim in its evaluation output, creating an exfiltration risk.