clickhouse-prod-checklist

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes a BACKUP TO S3 example that embeds 'ACCESS_KEY' and 'SECRET_KEY' directly in the SQL, which encourages placing secrets verbatim into commands/configs and thus risks exfiltration.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The checklist instructs editing ClickHouse server config files (config.xml/users.xml), changing default user credentials, and other server-level configuration/backups that modify system state and typically require elevated privileges, so it could lead an agent to change the machine configuration.