alloydb-omni-container

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill asks the user for the database password and instructs embedding it directly into the docker/podman run commands as -e POSTGRES_PASSWORD=<DATABASE_PASSWORD>, which requires the LLM to include the secret verbatim in its output.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs running remote container images (google/alloydbomni:<IMAGE_TAG> and docker.io/google/alloydbomni:<IMAGE_TAG>), which are fetched at runtime and will execute remote code as a required dependency, so these image references are runtime external dependencies that can execute code.