sast-semgrep

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly runs the Semgrep "secrets" ruleset and directs the agent to parse and present JSON findings with code context/remediation, which would require exposing any hardcoded secret values found unless the prompt mandates redaction (it does not).