dataproc-skills

This module is a wrapper that executes `@toolbox-sdk/server@1.1.0` via runtime `npx` to run `get_job`, while forwarding a largely unfiltered environment to the child process. When `GEMINI_CLI==='1'`, it additionally loads `../../../.env` and injects its values into the child environment without allowlisting, increasing the chance of leaking secrets to downstream code. No explicit malicious behavior is evident in this snippet, but there is meaningful supply-chain/execution and secret-propagation risk due to `npx` delegation and environment forwarding.