implementing-disk-encryption-with-bitlocker

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes plaintext credentials (a hardcoded PIN "123456") and commands that retrieve/display BitLocker recovery passwords, which would require the agent to handle and potentially output secret values verbatim.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill contains explicit privileged system and configuration changes (Enable-BitLocker, GPO/Intune settings, TPM configuration, recovery key backups) that require administrative/elevated privileges and will modify the machine's disk encryption state.