configuration
Warn
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: MEDIUMDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [DATA_EXFILTRATION]: Environment variable expansion in
configuration::get. - The skill automatically expands
${VAR:default}placeholders against the live process environment during read operations unlessraw: trueis specified. - This behavior allows for the potential retrieval of sensitive secrets, such as API keys or internal system paths, that are stored in the agent's environment variables.
- [DATA_EXFILTRATION]: File system persistence and monitoring.
- The
fsadapter persists configuration entries as YAML files under the./data/configurationdirectory. - The skill monitors this directory for external edits, which could allow for configuration injection if an attacker gains write access to the local file system.
- [COMMAND_EXECUTION]: Reactive trigger system executes registered functions.
- The skill supports binding triggers that invoke specified
function_idhandlers whenever configuration data is registered, updated, or deleted. - This architecture enables a data-driven execution flow where changes to configuration values automatically trigger function execution across the platform.
Audit Metadata