incident-remediating

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly demands "exact copy-pasteable commands" and "exact command with filled-in values" and tells the agent to read config files and use playbook commands verbatim (including secret/config rotation), which forces the LLM to include any secret values it finds or is given verbatim in its outputs.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs the agent to generate and execute exact commands, apply fixes directly (editing files, triggering rollouts, restarting pods, rotating secrets, saving PR/runbook files), and perform runtime remediations that change system and repository state — i.e., it directs the agent to modify the machine/environment rather than just provide guidance.