experiment-audit

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The reviewer is explicitly asked to read config/result files and produce "exact file:line references" and detailed findings, which can cause secrets (API keys, tokens, cookies) present in those files to be read and reproduced verbatim in the audit outputs, creating an exfiltration risk.