appbuilder-cicd-pipeline

This module is not overtly malicious (no network access, no obfuscation, no persistence), but it is a high-risk credential-disclosure helper: it directly prints an OAuth client secret and other sensitive OAuth/IMS runtime/project identifiers to stdout. If used in CI or any log-capturing environment, it can readily expose secrets. Treat execution and output handling as sensitive; consider redaction/masking or avoiding log capture.