Missing User Warnings
Medium
- Confidence
- 92% confidence
- Finding
- The documented commands include `nomad alloc logs` and `nomad var get`, both of which can expose sensitive data such as application secrets, tokens, internal URLs, personal data, or debug output if operators use them without caution. In a read-only monitoring skill this is contextually expected, but the absence of any warning or redaction guidance increases the risk of inadvertent disclosure through the agent's output or logs.
