algvex-web
Fail
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: HIGHCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: Utilization of administrative privileges via
sudoto manage system services and access logs. - [COMMAND_EXECUTION]: Execution of a local shell script with modified permissions.
- [DATA_EXFILTRATION]: Exposure of sensitive file paths and infrastructure metadata.
- [DATA_EXFILTRATION]: Identification of the backend environment file path
/home/linuxuser/algvex/backend/.envwhich is documented to store secrets likeGOOGLE_CLIENT_SECRETandSECRET_KEY. - [DATA_EXFILTRATION]: Disclosure of the SQLite database location
/home/linuxuser/algvex/backend/algvex.dband the server public IP address139.180.157.152.
Recommendations
- AI detected serious security threats
Audit Metadata