postgresql

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt embeds plaintext passwords directly in CREATE ROLE SQL statements, which instructs the agent to output or use those secret values verbatim (an insecure credential-handling pattern).

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). Flagged: the skill explicitly instructs modifying system-level PostgreSQL and SSL configuration files (postgresql.conf, pg_hba.conf, and files under /etc/ssl/private), actions that change the machine's state and typically require elevated (sudo/root) privileges.