runbook-generator

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt requires scanning config and secrets references and demands "actual commands and configuration derived from the codebase" and fully copy-pasteable commands, which creates a significant risk the model will include secret values found in the repo verbatim (even though it mentions placeholders, the spec pushes for real config), so it effectively can force secret exposure.