extract-skill-from-conversation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs extracting and embedding raw conversation contents (including "tool calls and results" and "commands that worked") into SKILL.md without any redaction guidance, which can force the LLM to reproduce secrets or API tokens verbatim from conversation files.