session-reconstruct

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill explicitly reconstructs and outputs original session transcripts and raw JSONL logs verbatim as annotated sessions, so if those logs contain API keys, tokens, cookies, or passwords the LLM would be required to reproduce them in its output, creating an exfiltration risk.