securing-container-registry-with-harbor

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes literal credentials (e.g., admin:Harbor12345) and instructs embedding secrets and tokens directly into Helm values and curl Authorization headers, which requires the LLM to output secret values verbatim.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime scripts (scripts/agent.py and scripts/process.py) make API calls to a user-supplied Harbor endpoint (e.g., GET /api/v2.0/projects, /configurations, /audit-logs) and parse those JSON responses to generate findings and remediation actions, so untrusted third-party content from arbitrary Harbor instances can directly influence agent decisions.