code-reviewer

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to read repository files and include code snippets in review reports (and flags hardcoded secrets as critical) but gives no guidance to redact or avoid printing secret values, so the LLM may output secrets verbatim.