code-reviewer

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read source files and grep for sensitive patterns (password/secret/api_key and hardcoded-password regex) and then produce a report, which will likely cause the LLM to surface matched secret values verbatim in its output.