nosql-injection

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). This playbook includes commands and payloads that embed passwords directly (e.g., curl -d '"password"') and describes blind extraction of account passwords via injected queries, so an agent following it would be expected to construct and output literal secret values (exfiltrated or supplied) verbatim.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The content is an explicit offensive playbook containing step-by-step exploit techniques for data exfiltration (blind $regex enumeration, reading CouchDB docs), credential/authentication bypasses, remote code execution and backdoor installation (Redis CONFIG SET + BGSAVE to write a webshell, CouchDB admin creation), and use of $where JS execution—all clear instructions for deliberate malicious abuse.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The playbook contains explicit, actionable commands that create accounts and modify remote file systems (e.g., CouchDB admin creation and Redis CONFIG SET + BGSAVE to write a webshell), which are state-changing operations that an agent could run against the host (including localhost).