performing-authenticated-scan-with-openvas

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt repeatedly shows commands and code that embed passwords and private keys directly (e.g., --gmp-password , ..., gmp.authenticate('admin','password'), and XML with private key contents), which would require the LLM to include secret values verbatim in its outputs.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.75). The installation instructions include a runtime curl command that downloads and runs remote configuration—curl -fsSL https://greenbone.github.io/docs/latest/_static/docker-compose-22.4.yml -o docker-compose.yml—which fetches external content that will be executed by docker-compose (remote code/config controlling execution).

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs the agent to run privileged system commands (sudo apt install, sudo gvm-setup, sudo gvm-start), install and start services, and access local private keys—actions that modify the host system state and require elevated privileges.