ansible-playbook-design

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes an example that passes an SSH private/public key as a literal extra-var on the command line (and references vars/secrets.yml), which instructs embedding secrets into commands/outputs verbatim — a high-risk exfiltration pattern.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill includes explicit examples that use become: true and tasks to create admin users, modify SSH and system files, and manage systemd services—actions that require sudo and change the host's state.