constitution-validation

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly instructs the agent to read source files and include code snippets/violation details in reports (example shows a hardcoded API key) which requires outputting secrets verbatim and thus poses an exfiltration risk.