pgpm-docker

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The skill embeds a plaintext default DB password ("password") in examples and environment variables and documents a --password CLI flag, which encourages including secrets verbatim in commands/output and thus poses an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill runs "pgpm docker start" which pulls and runs the remote Docker image pyramation/postgres:17 at runtime, meaning it fetches and executes remote code from that external image (pyramation/postgres:17), so this is a required external dependency that can execute arbitrary code.