There are some Opsec lessons here:
- If you're using someone else's template (stolen or not), review what it does.
- Don't leave unnecessary 3rd part deps
- Avoid testing by opening files directly from the FS (it can leak paths and usernames), or do it in a dedicated VM