cliproxy-manager

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly requires obtaining the management key (including prompting the user for plaintext if hashed) and provides examples that embed the key in CLI arguments (e.g., --key YOUR_KEY), which forces the agent to handle and potentially output secret values verbatim.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs the agent to read and update the service's configuration and API keys (which are written back to disk and affect a running service), so it directs state-changing operations on the host that can modify service behavior and secrets.