Linux Production Shell Scripts

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes templates that embed plaintext secrets (e.g., db_pass="password") and pass them on the command line (mysqldump -p"$db_pass") and echo generated passwords, which forces the model/agent to handle and output secret values verbatim.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill includes many scripts that create users (useradd, passwd), run sudo operations (apt-get install, systemctl restart/start), modify crontabs and remove files, all of which directly modify system state and require elevated privileges, so it encourages compromising the machine state.