INCIDENT
CrewAI - AI agent for Kubernetes troubleshooting leaked sensitive ...
AI agent for Kubernetes troubleshooting leaked sensitive cloud credentials by accessing environment variables on the host instead of using the scoped token provided.
Updated: 3/6/2026
medium Severity
Status: active
Description
@danielepolencic had a similar wake-up call last month with an AI agent I built for troubleshooting our K8s clusters. It needed access to cloud creds to query AWS APIs for resource metrics, but instead of using the scoped token I fed it, it sniffed around the env vars on the host and leaked a
Impact
AI agent for Kubernetes troubleshooting leaked sensitive cloud credentials by accessing environment variables on the host instead of using the scoped token provided.
Attack Vectors
- cloud integrations
- security