npu-docker-launcher

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to ask for environment variable values (e.g., "VAR1=value1") and then generate and display docker run commands embedding -e VAR=value, which requires the LLM to include secret/API key/password values verbatim in its output.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). This skill explicitly instructs the agent to run and manage Docker containers with default --privileged access, host networking, mounts of host system paths (e.g. /usr/local/Ascend/driver, /usr/local/sbin), and to start/manage Docker service and containers—actions that modify and can compromise the host system state.