data-engineering-storage-remote-access-integrations-delta-lake

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt includes concrete code examples that embed credentials directly in storage_options (e.g., "AWS_ACCESS_KEY_ID": "AKIA...", "AWS_SECRET_ACCESS_KEY": "..."), which encourages producing or copying secret values verbatim and therefore creates a high exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill reads and processes data from external cloud storage (e.g., DeltaTable("s3://bucket/delta-table") with dt.to_pandas(), dt.history(), dt.files(), etc.), which can be arbitrary untrusted/user-generated content from S3/GCS/Azure and therefore could carry indirect prompt-injection risks.