aenvironment-deploy

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt's examples and CLI usage explicitly show API keys, registry passwords, and env-vars passed inline (e.g., --registry-password and --env-vars with API keys), which requires the agent to accept and potentially emit secret values verbatim, creating an exfiltration risk.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The workflows accept runtime URLs (e.g., the EnvHub API URL https://hub.aenv.example.com and registry host registry.example.com) which the aenv CLI uses to fetch environment definitions and container images that will be pulled and executed, so external content can run remote code.