context-bundling

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read and embed the full contents of arbitrary files (e.g., source, config, or .env files) into the bundle with no guidance to redact secrets, so it can force the LLM to output secret values verbatim.