sealos-database

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The workflow explicitly requires fetching connection details (host, port, username, password) and composing/writing connection strings into env files, which forces the agent to handle and embed secret values verbatim (even though it forbids printing them), creating an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill explicitly recommends running a runtime fallback that fetches and executes remote code—npx -y sealos-cli@latest ...—which will download and run the sealos-cli package from the npm registry during skill execution, so it is a runtime external dependency that executes remote code.