docker-compose-knowledge

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes hardcoded credentials (e.g., DATABASE_URL with "secret", MESSENGER_DSN "guest:guest", and POSTGRES_PASSWORD=secret) in example compose and .env files that an LLM would reproduce verbatim, creating an exfiltration risk.