Security Watch Mode When activated, scans every file write for common security anti-patterns and blocks dangerous code from being committed. What It Does Flags or blocks writes containing: - Secrets : API keys, passwords, tokens, private keys in source code - Dangerous functions : , , , - Injection vectors : Unsanitized template literals in SQL/shell commands - Insecure config : URLs, disabled TLS verification, CORS origins Activation Hook Configuration Detection Patterns Gotchas - False positives on test fixtures that intentionally contain patterns like — use comment - Base64-encoded secrets…