grepai-storage-postgres

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes many examples and config templates that embed plaintext database credentials (DSNs, Docker -e POSTGRES_PASSWORD, export DATABASE_URL, etc.), meaning an agent generating configs or commands would be expected to include secret values verbatim.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs system-level changes (e.g., "sudo apt install", "sudo make install"), running containers that bind host ports, and creating/managing databases — actions that require elevated privileges and modify the machine's state.