business-logic-security-audit

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt requires producing code-level findings and embedding verbatim "Vulnerable Code" and full audit reports directly in the conversation and saved files, which would force the LLM to reproduce any secrets (API keys, tokens, DSNs) found in the codebase, creating a high exfiltration risk.