clean-code-refactor

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). Because the skill requires reading all files and produces before/after diffs (and even explicitly extracts hardcoded strings to constants), any API keys or passwords hard-coded in the codebase would be included verbatim in its generated output or written changes, creating an exfiltration risk.