act-local-testing

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes example API tokens (e.g., ghp_...) and explicitly demonstrates putting secrets in a .secrets file and passing them inline via act -s, which requires the agent to insert secret values verbatim into commands/files and thus creates exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill includes instructions that explicitly require or encourage privilege escalation and system changes (e.g., "curl ... | sudo bash", "sudo act", "sudo usermod -aG docker $USER"), which modify system state and can compromise the host.