ws-verifier

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The verifier is instructed to read changed files and session files and to report "evidence" and "found" text (file:line and description), which can require embedding verbatim file contents (including any API keys/secrets present) with no redaction rules, creating an exfiltration risk.