azure-devops

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes an explicit example that passes a personal access token on the command line (./config.sh ... --token PAT_TOKEN), which requires embedding a secret verbatim in generated commands and thus poses an exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill includes instructions to install and run a self-hosted agent that use sudo (e.g., sudo ./svc.sh install / start), which clearly modifies system state and requires elevated privileges.