ui-skills

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill requires the agent to "quote the exact line/snippet" when reviewing user-provided files, which forces verbatim reproduction of any secrets (API keys, tokens, passwords) present in those files and thus creates an exfiltration risk.