huawei-cloud-flexus-l-deploy-jiuwenswarm

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs the agent to interactively collect API_KEY/API_BASE and channel credentials and to generate remote configuration scripts that update .env/config files, which requires embedding secret values verbatim in generated commands/scripts (secret exfiltration risk).

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The installation script executed at runtime (scripts/install_deps.py -> get_dependencies_script) runs a remote setup script via "curl -fsSL https://deb.nodesource.com/setup_18.x | bash -" which fetches and immediately executes remote code on the target instance, so this URL is a runtime external dependency that executes code.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs creating cloud instances and remotely executing scripts that modify systemd service files, change file permissions, update system configuration (.env, config.yaml) and restart services—actions that alter the host/system state and require elevated privileges.