cdk8s-apps

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt contains examples that embed secret values directly in code (e.g., Secret(string_data=secrets) with "supersecret"), which encourages producing manifests or code that include secret values verbatim and therefore risks exfiltration.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs fetching and importing remote, public resources (e.g., "cdk8s import https://raw.githubusercontent.com/...", "cdk8s import helm:https://charts.bitnami.com/...", "cdk8s import github:...") which causes the agent/workflow to ingest untrusted, user-provided third‑party content (CRDs, Helm charts, GitHub repos) as part of its operation, enabling indirect prompt injection risk.