Skills
skills/trpc-group/trpc-agent-go/envdump/Gen Agent Trust Hub

envdump

Fail

Audited by Gen Agent Trust Hub on Mar 30, 2026

Risk Level: HIGHCREDENTIALS_UNSAFEDATA_EXFILTRATION
Full Analysis
  • [CREDENTIALS_UNSAFE]: The scripts/envdump.sh script executes the env command to collect all environment variables and stores them in a plain-text file. This is a high-risk operation because environment variables are the standard mechanism for providing secrets to applications, including API_KEY, AWS_SECRET_ACCESS_KEY, and DATABASE_URL values.\n- [DATA_EXFILTRATION]: Writing the entire environment state and system information to out/env.txt facilitates the leakage of sensitive data. This information provides a roadmap of the execution environment and exposes private credentials to any entity with access to the file system or output artifacts.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 30, 2026, 01:08 AM
Security Audit — agent-trust-hub — envdump