jeecg-codegen

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt contains multiple mysql CLI examples that embed credentials on the command line (e.g., -uroot -proot) and instruct issuing such commands, which requires including secret/password values verbatim in outputs and is therefore high-risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs the agent to read/write project files and to run Bash/mysql commands (including executing Flyway SQL automatically on localhost with root credentials), which directly modify the host filesystem and local databases and thus changes the machine state.