critical
suspicious.env_credential_access
- Location
- scripts/vikunja.py:61
- Finding
- Python code POSTs credential environment variables to an environment-controlled URL.
Vikunja
AdvisoryAudited by Static analysis on May 18, 2026.
Overview
Detected: suspicious.env_credential_access