exasol-setup-personal

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly asks the agent to collect AWS Access Key ID and Secret Access Key (and to either run aws configure commands or show those commands with the secret values filled in) and to read credentials from deployment.json and enter them into exapump, which requires the LLM to handle and output secret values verbatim, creating an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs running remote installers at runtime that fetch and execute code (e.g., curl https://downloads.exasol.com/exasol-personal/installer.sh | sh, curl -fsSL https://raw.githubusercontent.com/exasol-labs/exapump/main/install.sh | sh, and the AWS CLI installers at https://awscli.amazonaws.com/...), which directly execute remote code the skill relies on for setup.