spoonos-deployment-guide

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples that embed API keys and passwords directly in commands and files (e.g., --set-env-vars "OPENAI_API_KEY=sk-...", plaintext DATABASE_URL with 'pass', and instructions to edit .env with your keys), which requires the LLM to output secret values verbatim and is therefore insecure.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The VPS setup script runs "git clone https://github.com/your-org/your-agent.git" and then installs and later executes that code (pip install -r requirements.txt and ExecStart running main.py), so this external repository would supply remote code that the agent runs.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). Includes explicit sudo-based host setup steps (apt installs, add-apt-repository), creating/modifying files under /etc (systemd service, nginx), and other system-level changes that require elevated privileges and change the machine state.