llm-wiki

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill explicitly directs the agent to read source files and include short inline examples from actual source (not invented), which can force verbatim copying of any secrets/API keys present in the codebase and thus risks exfiltration.