spaces-storage

[Skill Scanner] Backtick command substitution detected All findings: [HIGH] command_injection: Backtick command substitution detected (CI003) [AITech 9.1.4] [HIGH] data_exfiltration: Credential file access detected (DE002) [AITech 8.2.3] [HIGH] command_injection: Backtick command substitution detected (CI003) [AITech 9.1.4] [HIGH] command_injection: Backtick command substitution detected (CI003) [AITech 9.1.4] This code is a benign set of example integrations for DigitalOcean Spaces. It contains no signs of malware or supply-chain credential-harvesting. Primary risks are operational/security misconfiguration: default public ACLs (public-read) which publicly expose uploaded objects, lack of filename sanitization, and the general risk of mishandling long-lived access/secret keys. Those are configuration/usage risks to address (use private ACLs when appropriate, validate filenames, limit key permissions and rotate keys).