telegraf

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes literal plaintext credentials (e.g., "changeme123" in DOCKER_INFLUXDB_INIT_PASSWORD and "telegraf:password@..." DB URIs), which would require the agent to output secret values verbatim in config/compose files, posing exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs creating/modifying system configuration files under /etc and deploying containers that mount host-level resources (/var/run/docker.sock, /proc, /sys), which modify system state and typically require elevated privileges.