Linux Production Shell Scripts

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples that store plaintext credentials (e.g., db_pass="password") and use them directly on the command line (mysqldump -p"$db_pass"), which forces any generated script or commands to include secret values verbatim and creates an exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill includes explicit privileged operations that modify system state—e.g., user creation (useradd/passwd), sudo apt-get installs, sudo systemctl restarts, crontab modification, and file deletion/rotation—so it directs actions that require or perform elevated changes to the host.