macos-admin

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill repeatedly instructs embedding admin passwords into commands (e.g., -pass $ADMIN_PASSWORD, dscl ... $NEW_PASSWORD) and passing credentials via CLI/env vars, which requires the agent to handle and potentially output secret values verbatim, creating exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs the agent to use sudo and elevated privileges to create users, modify system files and security features (dscl, csrutil, fdesetup, editing /Library/Preferences), which directly changes and can weaken the machine's state.