integration-testing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes hardcoded database credentials (e.g., WithUsername("postgres").WithPassword("postgres")), which means an agent reproducing the template would output secret values verbatim and thus poses an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill uses Testcontainers to pull and run the Docker image docker.io/library/postgres:15-alpine at test runtime (Via .WithImage("postgres:15-alpine")), which fetches and executes remote code that the tests depend on.