cloud-k8s-deployment

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes commands that embed secrets directly (e.g., kubectl create secret --from-literal=DATABASE_URL="postgresql://user:pass@host/db" and helm --set grafana.adminPassword=admin), which requires an LLM to handle or emit secret values verbatim, creating exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill explicitly downloads and installs remote executables and Helm charts at runtime—e.g., the doctl tarball at https://github.com/digitalocean/doctl/releases/download/v1.104.0/doctl-1.104.0-linux-amd64.tar.gz and Helm repo URLs like https://kubernetes.github.io/ingress-nginx and https://charts.jetstack.io—which are fetched during execution and deploy/execute remote code that the skill requires.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). This skill includes system-level install steps (e.g., "sudo mv ~/doctl /usr/local/bin") and other commands that require sudo or modify system files/configuration, so it pushes the agent to perform privileged changes to the host.