pocketbase

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt contains multiple examples and operational commands that embed plaintext credentials (superuser create with a password, --password flags, .env entries) and instruct confirming/using those values, meaning an agent could be required to output secret values verbatim.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill contains runtime setup commands that fetch and execute a remote PocketBase binary (via the GitHub API and direct release download), e.g. https://api.github.com/repos/pocketbase/pocketbase/releases/latest and https://github.com/pocketbase/pocketbase/releases/download/v${VERSION}/pocketbase_${VERSION}_${OS}_${ARCH}.zip, which downloads and runs remote code and is relied on by the skill.