Missing User Warnings
Medium
- Confidence
- 91% confidence
- Finding
- The skill collects and displays full process command lines, which can expose secrets commonly passed via CLI arguments such as API keys, passwords, tokens, internal hostnames, or file paths. In a monitoring skill, this is more sensitive because users may run it broadly for diagnostics and may not expect command-line contents to be disclosed in terminal output or JSON responses.
