vulnerability-scanning

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes explicit examples that embed credentials verbatim (e.g., OpenVAS default admin/admin, omp -u admin -w admin, and Nessus code that constructs headers with access/secret keys and instantiates NessusScanner with access-key/secret-key), which requires including secrets directly in commands/code.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill instructs scanning and ingesting results from arbitrary external websites and community templates (e.g., "nuclei -u https://example.com", "nuclei -l targets.txt", "nuclei -update-templates" and "Import third-party findings"), so the agent would read/interprete untrusted, user-controlled web content and templates as part of its workflow.