infisical-auth
Authenticates the Infisical CLI and deploys containers with injected secrets, ensuring secure and efficient deployment workflows.
Install this skill
or
67/100
Security score
The infisical-auth skill was audited on May 14, 2026 and we found 9 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 5
Access to .env file
SourceSKILL.md
| 5 | from .env, then deploy or re-deploy the datacrew-public container with secrets |
medium line 19
Access to .env file
SourceSKILL.md
| 19 | `.env`, then immediately run the deploy script within the same shell session. |
medium line 103
Access to .env file
SourceSKILL.md
| 103 | - **Infisical project (datacrew/.env)**: `de8b26a4-8d69-46fa-bb32-9715ab396d6f` — local dev secrets |
medium line 105
Access to .env file
SourceSKILL.md
| 105 | - **Machine identity**: client ID + secret in `.env` (NOT in Infisical — bootstrap credentials) |
medium line 111
Access to .env file
SourceSKILL.md
| 111 | > `infisical.json`). The `datacrew/.env` has `INFISICAL_PROJECT_ID=de8b26a4` |
medium line 117
Access to .env file
SourceSKILL.md
| 117 | - `.env` — machine identity credentials (INFISICAL_CLIENT_ID, INFISICAL_CLIENT_SECRET, INFISICAL_PROJECT_ID) |
low line 39
External URL reference
SourceSKILL.md
| 39 | export INFISICAL_API_URL=https://infisical.datacrew.space && \ |
low line 58
External URL reference
SourceSKILL.md
| 58 | export INFISICAL_API_URL=https://infisical.datacrew.space |
low line 120
External URL reference
SourceSKILL.md
| 120 | - Infisical dashboard: `https://infisical.datacrew.space/organizations/e899ebbe-5c41-4d53-b1ce-28cd18db1987/projects/secret-management/de8b26a4-8d69-46fa-bb32-9715ab396d6f/overview` |
Scanned on May 14, 2026
View Security Dashboard