linux-shell-scripting

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples that store and echo plaintext passwords (e.g., db_pass="password", mysqldump -p"$db_pass") and prints/generated passwords, which requires the model to emit secret values verbatim and is therefore insecure.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill contains numerous scripts that create users (useradd, passwd), run privileged package installs (sudo apt-get), control services (systemctl start/restart), edit crontabs and remove files — all actions that modify system state and require elevated privileges.