kimi-integration

clawhub:kimi-integration

84/100

First Seen

Feb 18, 2026

Last Scanned

Feb 22, 2026

Findings

Score

84/100

MEDIUM 2

Findings (2)

MEDIUM

Credential in shell export CRED_011

Detects API keys or tokens exposed in shell export commands

export MOONSHOT_API_KEY="sk-your-moonshot-key-here

FIX

Remove credentials from shell export statements. Use a .env file (excluded from version control) or a secrets manager, and load secrets at runtime.

FP?

Likely FP if the export line uses a placeholder value (e.g., export API_KEY=your-key-here) or is in documentation describing environment setup.

MEDIUM

Credential in shell export CRED_011

Detects API keys or tokens exposed in shell export commands

export KIMICODE_API_KEY="sk-your-kimicode-key-here

FIX

Remove credentials from shell export statements. Use a .env file (excluded from version control) or a secrets manager, and load secrets at runtime.

FP?

Likely FP if the export line uses a placeholder value (e.g., export API_KEY=your-key-here) or is in documentation describing environment setup.