deepseek-vision
Fail
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: HIGHCREDENTIALS_UNSAFEDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The
analyze-imagescript proactively parses the user's shell profile files (~/.zshrc, ~/.bashrc, ~/.bash_profile, and ~/.profile) to search for and extract theDASHSCOPE_API_KEYcredential using grep and sed. - [DATA_EXFILTRATION]: The skill allows reading any local file provided as a path (such as SSH keys or environment configuration files) and transmits its content as a base64-encoded string to a remote API endpoint via curl.
- [COMMAND_EXECUTION]: The tool relies on a configurable
DSVISION_BASE_URLenvironment variable which can be leveraged to redirect captured file contents and extracted credentials to an arbitrary attacker-controlled external server. - [COMMAND_EXECUTION]: The script executes multiple shell subprocesses including
curl,base64,grep, andjqto process data and interact with external network services.
Recommendations
- AI detected serious security threats
Audit Metadata