gcp-cloud-run
Enables the development of serverless applications on GCP, focusing on Cloud Run services and event-driven functions.
Install this skill
or
58/100
Security score
The gcp-cloud-run skill was audited on Feb 28, 2026 and we found 8 security issues across 4 threat categories, including 1 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
high line 79
Template literal with variable interpolation in command context
SourceSKILL.md
| 79 | console.log(`Server listening on port ${PORT}`); |
medium line 126
Template literal with variable interpolation in command context
SourceSKILL.md
| 126 | res.send(`Hello, ${name}!`); |
medium line 155
Template literal with variable interpolation in command context
SourceSKILL.md
| 155 | console.log(`Event: ${cloudEvent.type}`); |
medium line 156
Template literal with variable interpolation in command context
SourceSKILL.md
| 156 | console.log(`Bucket: ${file.bucket}`); |
medium line 157
Template literal with variable interpolation in command context
SourceSKILL.md
| 157 | console.log(`File: ${file.name}`); |
low line 116
Webhook reference - potential data exfiltration
SourceSKILL.md
| 116 | **When to use**: ['Simple event handlers', 'Pub/Sub message processing', 'Cloud Storage triggers', 'HTTP webhooks'] |
medium line 77
Access to .env file
SourceSKILL.md
| 77 | const PORT = process.env.PORT || 8080; |
low line 138
Buffer.from base64 decode
SourceSKILL.md
| 138 | ? JSON.parse(Buffer.from(message.data, 'base64').toString()) |
Scanned on Feb 28, 2026
View Security DashboardGitHub Stars 21.5K
Rate this skill
Categorydevelopment
UpdatedApril 4, 2026
sickn33/antigravity-awesome-skills