coolify

Benign overall with appropriate capabilities for its stated purpose, but the design introduces notable credential handling risks (inline private keys, environment tokens, and potential exposure through command history or logs). Ensure strict secret management, minimal exposure, and clear auditing for token/key usage. Security risk is moderate due to credential handling; malware risk remains low given no active exfiltration or hidden backdoors detected in the fragment.