cmd-pr-sweep

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt instructs the agent to read changed files in full and cite file:line findings without any guidance to redact secrets, which can cause the model to reproduce embedded API keys, tokens, or passwords verbatim in its output.