implementing-network-deception-with-honeypots

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's specified alert output explicitly requires including "Credentials Used: [Username:Password if applicable]" (plaintext username:password), which instructs the agent to output secret values verbatim and thus poses an exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs installing and configuring system-level honeypot software, enabling network services, and changing firewall/host configurations—actions that require elevated privileges and modify the machine's state—so it should be flagged.