securing-container-registry-with-harbor

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt embeds and demonstrates literal credentials and secret placeholders directly in configuration files and curl commands (e.g., admin:Harbor12345 in Basic auth, , , oidc_client_secret), which requires secrets to be included verbatim in generated manifests/commands and creates high exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime scripts (scripts/agent.py and scripts/process.py) make API calls to a user-supplied Harbor endpoint (e.g., GET /api/v2.0/projects, /configurations, /audit-logs) and parse those JSON responses to generate findings and remediation actions, so untrusted third-party content from arbitrary Harbor instances can directly influence agent decisions.