azure-functions

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The Terraform example hard-codes a secret value ("MySecurePassword123!") into an azurerm_key_vault_secret resource, which requires the LLM to emit a literal secret in generated code—an insecure pattern that exposes credentials verbatim.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill includes a setup command that runs "curl https://aka.ms/install-artifacts-ubuntu.sh | bash", which fetches and executes remote code at runtime as a required installation step, so it is a high-risk external dependency.