qemu-alpine-ssh

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill includes an expect script that hardcodes and sends a plaintext root password ("password123") and instructs enabling password-based root SSH login, which requires embedding secrets verbatim in generated scripts/commands.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs modifying SSH configuration to enable root login, setting root passwords, starting/enabling system services, and killing host QEMU processes — all actions that modify system state and can compromise the machine (editing sshd_config is explicitly risky).