docker

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes multiple examples that embed plaintext secrets and passwords directly in docker run and docker-compose configurations (e.g., POSTGRES_PASSWORD=secret, DATABASE_URL=postgres://user:pass@db:5432/…), which encourages outputting secrets verbatim.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). The skill includes privileged host commands (e.g., "sudo systemctl restart docker", "sudo usermod -aG docker $USER") that modify host system state and user/group membership, which requires elevated privileges and can change the machine's state.