vastai-incident-runbook

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The runbook includes commands that decode and print Kubernetes secrets (base64 -d) and a command that embeds an API key literal (--from-literal=api-key=NEW_KEY), which instructs reading and placing secret values verbatim, creating a high exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The runbook explicitly instructs fetching and interpreting a public third-party status page (e.g., "curl -s https://status.vastai.com" in Quick Triage) and uses that content in the decision tree to determine remediation actions, so external content can materially influence agent behavior.