implementing-delinea-secret-server-for-pam

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill's deployment steps instruct the operator to download and run the Secret Server installer from https://thy.center/ss/link/SSDownload, which fetches remote executable code that is executed as part of the deployment (a runtime external dependency that executes remote code).

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill instructs performing privileged system-level changes (Install-WindowsFeature, Invoke-Sqlcmd CREATE DATABASE, Set-ItemProperty on IIS app pool identities, configuring service accounts and RPC) which require administrative/sudo privileges and modify the host/system state.