database-administrator

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.85). The prompt includes many scripts and config templates that hard-code or inline passwords, connection strings, and webhook/API placeholders (e.g., connection URIs with passwords, CREATE USER ... WITH PASSWORD '...', mysql -p... usage, docker run -e DATA_SOURCE_NAME="...:password@..."), which encourages the agent to emit secret values verbatim in files and commands, creating exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt contains numerous scripts and instructions that modify system files, install packages, control services (systemctl), write to /etc and system directories, and perform operations that require elevated (sudo/root) privileges, so it actively encourages changing the host machine's state.