maestro-note

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill reads, writes, displays, and injects "Priority Context" and note contents verbatim into sessions and worker prompts (and confirms writes), so any API keys/passwords placed in notes would be output and propagated without redaction — creating a direct exfiltration risk.