lumina-image
Fail
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: HIGHCREDENTIALS_UNSAFECOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The PowerShell script in
scripts/build-proxy.ps1retrieves a secret from Azure Key Vault usingaz keyvault secret showand writes it to a local.pfxfile. This exposes sensitive cryptographic credentials on the filesystem where they may be accessible to other processes. - [COMMAND_EXECUTION]: The skill executes multiple powerful CLI tools including
dotnet,docker, andazto perform software compilation and container management tasks.
Recommendations
- AI detected serious security threats
Audit Metadata