database-administrator

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). This prompt contains many hard-coded credentials and examples that embed passwords/tokens directly into commands, connection strings, and scripts (e.g., CREATE USER ... WITH PASSWORD, primary_conninfo='... password=...', mysql -p${DB_PASS}, curl webhook URLs), which requires the agent to output secret values verbatim and thus poses direct exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt includes numerous system-level scripts and commands (apt-get, systemctl start/stop, editing /etc files and cron, pg_upgrade with sudo, moving/chowning /var/lib paths, enabling services) that require elevated privileges and would modify the host system state, so it pushes the agent to perform potentially compromising machine changes.