kustomize

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill includes an embedded secret literal (secretGenerator with api-key=secret123) in example configs, so the LLM may need to reproduce that secret verbatim when emitting or reproducing those manifests — an explicit secret-in-context risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's "Remote Resources" section (e.g., examples like https://github.com/... and https://raw.githubusercontent.com/..., plus external helm chart repos) shows it can fetch and incorporate public third-party URLs, meaning the agent would read and interpret untrusted, user-controlled web content during builds.