openshell-cli

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly shows and allows passing credentials inline (e.g., --credential API_KEY=sk-abc123) and describes interactive/provider creation that can require embedding API keys/tokens verbatim into CLI commands, which forces the agent to handle secret values in its output.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill instructs the agent to modify persistent machine state (e.g., appending to ~/.ssh/config), start/stop/destroy local clusters, perform remote SSH operations using local keys, and discover/use local credentials (--from-existing), all of which can change system configuration or expose sensitive local state.