compliance-testing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill includes test code that directly embeds sensitive values (SSN, card numbers, CVV, PII) in API requests and test outputs, which would require an agent/LLM to include secret values verbatim in generated commands or code, creating an exfiltration risk.