perses-deploy

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes examples that embed secrets verbatim (e.g., --password on the CLI, client_secret, encryption_key, and password fields in config), which would require the agent to place user-provided secret values directly into generated commands/configs and thus risks exfiltration.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill explicitly adds and pulls the Helm chart repo at runtime (helm repo add perses https://perses.github.io/helm-charts), which fetches remote chart content and container images that are executed on the host, so this external URL is a runtime dependency that results in executing remote code.