process-watch

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's "info" command explicitly shows a process's environment (environment variables and similar), which can contain API keys, tokens or passwords and would require the agent to include those secret values verbatim in its output.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (medium risk: 0.60). This skill is primarily a monitoring tool but explicitly includes kill/force-kill commands that directly modify system state (and can be destructive); it doesn't request sudo or edits to privileged system files, so the risk is moderate.