sync-conversations-antigravity

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill requires the agent to embed the live session/installation identifier as ACTIVE_CONVERSATION_ID in generated shell commands (i.e., include a sensitive environment/session ID verbatim in output), which forces secret values to appear in the agent's output and risks exfiltration.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill explicitly instructs the agent to connect via SSH and overwrite/merge critical local and remote stateful files and databases (history.jsonl, brain/, conversations/*.db, installation_id), which directly changes the machine's state and can corrupt or hijack session continuity even though no sudo is requested.