electrobun-distribution

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes multiple examples that embed passwords and keys directly in commands (e.g., xcrun notarytool --password "app-specific-password", signtool /p PASSWORD, certutil -p PASSWORD), which encourages the agent to output secret values verbatim and thus creates an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The client Updater is configured to fetch https://updates.myapp.com/updates.json (and the update package URLs it references, e.g. https://updates.myapp.com/MyApp-1.0.1-win.exe) at runtime, which can both drive user prompts and deliver/execute remote binaries, meeting the criteria for a high-risk runtime external dependency.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs the agent to run system-level commands that import certificates into system keychains/certificate stores, use platform tools (security, certutil, signtool, xcrun), and create installers/registry entries or write to system locations — actions that modify machine state and require elevated privileges.