json-formatter

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The formatter explicitly requires returning the input JSON verbatim (formatted), so if the input contains API keys, tokens, or passwords the model will reproduce those secret values in its output, creating an exfiltration risk.