linux-shell-scripting

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt contains scripts that embed plaintext credentials (e.g., db_pass used with mysqldump -p"$db_pass") and print/generated passwords to stdout, which requires handling and outputting secret values verbatim.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill includes explicit state-changing commands—useradd/passwd (creating users), sudo apt-get install, sudo systemctl restart/start, and crontab modification—each requiring elevated privileges and capable of modifying the host system, so it should be flagged.