Close Open Privacy Scan

bolt Snapshot: commit 3c43038
science engine v3
schedule 2026-07-08T11:06:07.223536+00:00

verified_user No application data leak found

No high-confidence exfiltration was found in application code.

App Privacy Score

57 /100
Medium privacy risk

Medium risk · 271 finding(s)

Dependency score: 87 (Low risk)

bar_chart Score Breakdown

telemetry −25
egress −15
env_fs −3

list Scan Summary

0 high 31 medium 240 low
First-party packages: 3
Dependency packages: 6
Ecosystem: python

swap_horiz External domains

your-app.authkit.app{os.getenv(

</> First-Party Code

first-party (python)

python first-party
medium telemetry production #275affe73983cbb5 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/diagnostics/client_with_tracing.py:25
from opentelemetry import trace

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #c560d859e4b9f277 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/diagnostics/client_with_tracing.py:26
from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #cf11685322fc9a9f Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/diagnostics/client_with_tracing.py:27
from opentelemetry.sdk.resources import Resource

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #348c6c09e36c21b6 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/diagnostics/client_with_tracing.py:28
from opentelemetry.sdk.trace import TracerProvider

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #b2a8e7b41285e871 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/diagnostics/client_with_tracing.py:29
from opentelemetry.sdk.trace.export import BatchSpanProcessor

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #96aa0fabb351acf0 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/run_with_tracing.py:28
    from opentelemetry import trace

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #629a238230a2b98d Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/run_with_tracing.py:29
    from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #3045cb55cc645fb1 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/run_with_tracing.py:30
    from opentelemetry.sdk.resources import Resource

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #2b6ed9f2eaef3f78 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/run_with_tracing.py:31
    from opentelemetry.sdk.trace import TracerProvider

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #7f6563de5792b2d0 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/examples/run_with_tracing.py:32
    from opentelemetry.sdk.trace.export import BatchSpanProcessor

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #dc4a28483f630491 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/client/mixins/tools.py:11
from opentelemetry.trace import Status, StatusCode

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #3263e338ce26733e Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/client/telemetry.py:6
from opentelemetry.trace import Span, SpanKind, Status, StatusCode

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #a708b886a9baf3c0 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/server/sampling/run.py:29
from opentelemetry.trace import SpanKind, Status, StatusCode

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #b5c6091dfd4b3aad Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/server/telemetry.py:7
from opentelemetry.context import Context

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #1c0a502d30149cb6 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/server/telemetry.py:8
from opentelemetry.trace import Span, SpanKind, Status, StatusCode, get_current_span

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #3c3ee6f62d2c8650 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:26
from opentelemetry import context as otel_context

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #25d65a37af84c245 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:27
from opentelemetry import propagate, trace

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #0f8e807213733397 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:28
from opentelemetry.context import Context

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #831034a90b82cea6 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:29
from opentelemetry.trace import Span, Status, StatusCode, Tracer

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #cda4d88ebf1029ba Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:30
from opentelemetry.trace import get_tracer as otel_get_tracer

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

expand_more 104 low-confidence finding(s)
low egress production #f5ca33f1e0e21ed2 Hardcoded external endpoint. Review what data is sent to this destination.
repo/examples/apps/map/map_server.py:35
    resp = httpx.get(
        NOMINATIM_URL,
        params={"q": query, "format": "json", "limit": 1},
        headers={"User-Agent": "fastmcp-map-example/1.0"},
        timeout=10,
    )

Data is sent to a hardcoded external endpoint; review what leaves the process.

Fix: Verify the destination and that only non-sensitive data is sent; pin and audit the dependency.

low env_fs production #a810baf73a55b47d Environment-variable access.
repo/examples/auth/authkit/server.py:20
    authkit_domain=os.getenv("AUTHKIT_DOMAIN") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #02e5505be8702610 Environment-variable access.
repo/examples/auth/aws_oauth/server.py:29
    user_pool_id=os.getenv("FASTMCP_SERVER_AUTH_AWS_COGNITO_USER_POOL_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #be81ac1f806aa79a Environment-variable access.
repo/examples/auth/aws_oauth/server.py:30
    aws_region=os.getenv("FASTMCP_SERVER_AUTH_AWS_COGNITO_AWS_REGION")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d8d448a51af0cff1 Environment-variable access.
repo/examples/auth/aws_oauth/server.py:32
    client_id=os.getenv("FASTMCP_SERVER_AUTH_AWS_COGNITO_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #e026328b826f1098 Environment-variable access.
repo/examples/auth/aws_oauth/server.py:33
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_AWS_COGNITO_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #de91338dd7939dfe Environment-variable access.
repo/examples/auth/azure_oauth/server.py:23
    client_id=os.getenv("FASTMCP_SERVER_AUTH_AZURE_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #361d0081e60a67d4 Environment-variable access.
repo/examples/auth/azure_oauth/server.py:24
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_AZURE_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5f31422dbe74bfb2 Environment-variable access.
repo/examples/auth/azure_oauth/server.py:25
    tenant_id=os.getenv("FASTMCP_SERVER_AUTH_AZURE_TENANT_ID")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b6977144c42525a2 Environment-variable access.
repo/examples/auth/clerk_oauth/server.py:21
    domain=os.getenv("FASTMCP_SERVER_AUTH_CLERK_DOMAIN") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1947ece31c350f1d Environment-variable access.
repo/examples/auth/clerk_oauth/server.py:22
    client_id=os.getenv("FASTMCP_SERVER_AUTH_CLERK_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #04c2ce5d00dc1adb Environment-variable access.
repo/examples/auth/clerk_oauth/server.py:23
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_CLERK_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #710584c05209f93b Environment-variable access.
repo/examples/auth/discord_oauth/server.py:19
    client_id=os.getenv("FASTMCP_SERVER_AUTH_DISCORD_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #82bc831f482e7092 Environment-variable access.
repo/examples/auth/discord_oauth/server.py:20
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_DISCORD_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5fa60c377fc18263 Environment-variable access.
repo/examples/auth/github_oauth/server.py:19
    client_id=os.getenv("FASTMCP_SERVER_AUTH_GITHUB_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #6dffd781a1136998 Environment-variable access.
repo/examples/auth/github_oauth/server.py:20
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_GITHUB_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #4da5a76a474a423c Environment-variable access.
repo/examples/auth/google_oauth/server.py:19
    client_id=os.getenv("FASTMCP_SERVER_AUTH_GOOGLE_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #26159ed51e5c8c3d Environment-variable access.
repo/examples/auth/google_oauth/server.py:20
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_GOOGLE_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #633ba214a5e2b5b3 Environment-variable access.
repo/examples/auth/keycloak_oauth/server.py:18
    realm_url=os.getenv("KEYCLOAK_REALM_URL") or "http://localhost:8080/realms/fastmcp",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ade4f6cb1b51d184 Environment-variable access.
repo/examples/auth/mounted/server.py:39
    client_id=os.getenv("FASTMCP_SERVER_AUTH_GITHUB_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #57858a536235da72 Environment-variable access.
repo/examples/auth/mounted/server.py:40
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_GITHUB_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #8bb7aee952c112d0 Environment-variable access.
repo/examples/auth/mounted/server.py:62
    client_id=os.getenv("FASTMCP_SERVER_AUTH_GOOGLE_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b03c38e658df163f Environment-variable access.
repo/examples/auth/mounted/server.py:63
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_GOOGLE_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b53393155428c70d Environment-variable access.
repo/examples/auth/oci_oauth/server.py:20
    client_id=os.getenv("FASTMCP_SERVER_AUTH_IDCS_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2bed9e72906e2d42 Environment-variable access.
repo/examples/auth/oci_oauth/server.py:21
    client_secret=os.getenv("FASTMCP_SERVER_AUTH_IDCS_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #a546614c907ab782 Environment-variable access.
repo/examples/auth/oci_oauth/server.py:22
    config_url=f"https://{os.getenv('FASTMCP_SERVER_AUTH_IDCS_DOMAIN')}/.well-known/openid-configuration"

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #aea01e8409ff2d1b Environment-variable access.
repo/examples/auth/propelauth_oauth/server.py:29
    auth_url=os.environ["PROPELAUTH_AUTH_URL"],

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2508984fd6bce75e Environment-variable access.
repo/examples/auth/propelauth_oauth/server.py:30
    introspection_client_id=os.environ["PROPELAUTH_INTROSPECTION_CLIENT_ID"],

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #553e5f05eddc6c86 Environment-variable access.
repo/examples/auth/propelauth_oauth/server.py:31
    introspection_client_secret=os.environ["PROPELAUTH_INTROSPECTION_CLIENT_SECRET"],

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #4713765ff667ac35 Environment-variable access.
repo/examples/auth/propelauth_oauth/server.py:32
    base_url=os.getenv("BASE_URL", "http://127.0.0.1:8000/"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #f1d84e1685c54596 Environment-variable access.
repo/examples/auth/scalekit_oauth/server.py:22
required_scopes_env = os.getenv("SCALEKIT_REQUIRED_SCOPES")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #630453382ea76781 Environment-variable access.
repo/examples/auth/scalekit_oauth/server.py:30
    environment_url=os.getenv("SCALEKIT_ENVIRONMENT_URL")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b73a183741eecd3e Environment-variable access.
repo/examples/auth/scalekit_oauth/server.py:32
    resource_id=os.getenv("SCALEKIT_RESOURCE_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #89003c5c61eda2dd Environment-variable access.
repo/examples/auth/scalekit_oauth/server.py:33
    base_url=os.getenv("BASE_URL", "http://127.0.0.1:8000/"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1e2fffda5fa39c11 Environment-variable access.
repo/examples/auth/workos_oauth/server.py:20
    client_id=os.getenv("WORKOS_CLIENT_ID") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5841e825c24ccca2 Environment-variable access.
repo/examples/auth/workos_oauth/server.py:21
    client_secret=os.getenv("WORKOS_CLIENT_SECRET") or "",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #7ea9eb5e7f48cb68 Environment-variable access.
repo/examples/auth/workos_oauth/server.py:22
    authkit_domain=os.getenv("WORKOS_AUTHKIT_DOMAIN") or "https://your-app.authkit.app",

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #418298c75e9eda17 Filesystem access.
repo/examples/code_mode/server.py:73
    with open(path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #39ba4fb78b37853e Environment-variable access.
repo/examples/diagnostics/client_with_tracing.py:34
    endpoint = os.environ.get("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ecb7f10dd2bc9002 Environment-variable access.
repo/examples/diagnostics/client_with_tracing.py:35
    service_name = os.environ.get("OTEL_SERVICE_NAME", "fastmcp-diagnostics-client")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #505c6bbef36f9b95 Environment-variable access.
repo/examples/diagnostics/client_with_tracing.py:53
    server_url = os.environ.get("DIAGNOSTICS_SERVER_URL", "http://localhost:8001/sse")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #dee4d3b2507bbabe Environment-variable access.
repo/examples/diagnostics/server.py:25
    env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #110c1a847f18534d Environment-variable access.
repo/examples/memory.py:43
    fastmcp.settings.home / os.environ.get("USER", "anon") / "memory"

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #f15ef9ca3ef273b8 Environment-variable access.
repo/examples/run_with_tracing.py:34
    endpoint = os.environ.get("OTEL_EXPORTER_OTLP_ENDPOINT", "http://localhost:4317")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #000f2524457d08ea Environment-variable access.
repo/examples/run_with_tracing.py:35
    service_name = os.environ.get(

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2443f7c75f06829c Environment-variable access.
repo/examples/run_with_tracing.py:35
    service_name = os.environ.get(
        "OTEL_SERVICE_NAME",
        f"fastmcp-{os.path.basename(sys.argv[1]).replace('.py', '')}",
    )

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #72cf7124268f1a8a Filesystem access.
repo/examples/search/server_bm25.py:73
    with open(path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1d9d79537ab0ee41 Environment-variable access.
repo/fastmcp_remote/fastmcp_remote/cli.py:79
            lambda match: os.environ[match.group(1)], header_value

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #6503138f75601a2a Environment-variable access.
repo/fastmcp_remote/fastmcp_remote/cli.py:99
    if config_dir := os.environ.get("FASTMCP_REMOTE_CONFIG_DIR"):

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #326b5ebfb22df9ef Filesystem access.
repo/fastmcp_slim/fastmcp/cli/apps_dev.py:1343
        app_bridge_js = app_bridge_cache.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #094853676454bcdc Filesystem access.
repo/fastmcp_slim/fastmcp/cli/apps_dev.py:1365
    app_bridge_cache.write_text(app_bridge_js, encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1c2ac8e06f120cfa Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/apps_dev.py:1699
    env = {**os.environ, "FASTMCP_LOG_LEVEL": "WARNING"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #8465dbd1da5de002 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/cimd.py:123
        with open(output_path, "w") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #aa610d0e154068e3 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/cli.py:310
        env = dict(os.environ.items()) | env_vars | {"FASTMCP_UV_SPAWNED": "1"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #4dfae5a91e713824 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/cli.py:747
        env = os.environ | {"FASTMCP_UV_SPAWNED": "1"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #e5726a9ca30ac1bc Filesystem access.
repo/fastmcp_slim/fastmcp/cli/cli.py:884
                with open(Path(server_spec)) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2185dc64fd6852f5 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/cli.py:920
        env = os.environ | {"FASTMCP_UV_SPAWNED": "1"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d738a2b14244909c Filesystem access.
repo/fastmcp_slim/fastmcp/cli/client.py:140
        data = json.loads(path.read_text())

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #528dc0230f130fb5 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:123
        text = path.read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #498ce22220235a4e Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:148
            os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"), "Claude"

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #a122d262f16b3e24 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:161
        text = path.read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #0750645f3b07d593 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:259
            os.environ.get("APPDATA", Path.home() / "AppData" / "Roaming"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #64efc1536aa3996a Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:266
            os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1b8de6d70ad990a1 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:272
        text = path.read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #fda16be2796a52aa Filesystem access.
repo/fastmcp_slim/fastmcp/cli/generate.py:770
    output_path.write_text(script)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #eb15fd92112916cc Filesystem access.
repo/fastmcp_slim/fastmcp/cli/generate.py:784
        skill_path.write_text(skill_content)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #7e14df51c643f785 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/install/claude_desktop.py:39
            os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"), "Claude"

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5554300dfc4720e7 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/install/claude_desktop.py:118
            content = config_file.read_text().strip()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #31a6b98a10047130 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/install/cursor.py:130
            config_file.write_text('{"mcpServers": {}}')

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #be68d5e874b4144a Filesystem access.
repo/fastmcp_slim/fastmcp/cli/install/shared.py:82
            with open(config_path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #7f2d803e59d00e59 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/run.py:173
        with open(config_path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5cb18b5440d26b47 Environment-variable access.
repo/fastmcp_slim/fastmcp/client/transports/stdio.py:430
            env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #393799abe69b785b Environment-variable access.
repo/fastmcp_slim/fastmcp/client/transports/stdio.py:497
            env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #557d451cd260cb9a Environment-variable access.
repo/fastmcp_slim/fastmcp/client/transports/stdio.py:559
            env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #83901ab4323ab9e1 Filesystem access.
repo/fastmcp_slim/fastmcp/mcp_config.py:334
        file_path.write_text(self.model_dump_json(indent=2), encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #61badb56b89d9038 Filesystem access.
repo/fastmcp_slim/fastmcp/mcp_config.py:340
            content := file_path.read_text(encoding="utf-8").strip()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #cce3751fd90aa650 Filesystem access.
repo/fastmcp_slim/fastmcp/resources/types.py:103
                content: str | bytes = await self._async_path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #eea43686feb0e6b5 Filesystem access.
repo/fastmcp_slim/fastmcp/resources/types.py:105
                content = await self._async_path.read_text(encoding=self.encoding)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #fc94475c86ca8e02 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/_common.py:80
    with open(path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5a017a936a76be79 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:57
            return main_file_path.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #bde5409192e6972a Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:96
            return full_path.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #916610cd8dcbc32c Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:98
            return full_path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #054daddda417362c Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:170
            return full_path.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2d18515b5a49d920 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:172
            return full_path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #138232e4c30d2849 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:242
        content = main_file.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2bf880c7ac1c3583 Environment-variable access.
repo/fastmcp_slim/fastmcp/settings.py:20
ENV_FILE = os.getenv("FASTMCP_ENV_FILE", ".env")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #07ef9f8a4658bb64 Environment-variable access.
repo/fastmcp_slim/fastmcp/utilities/cli.py:30
    return bool(os.environ.get("FASTMCP_UV_SPAWNED"))

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1fe2e934099a8be3 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/cli.py:76
                with open(config_path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #bfb56842de44504c Environment-variable access.
repo/fastmcp_slim/fastmcp/utilities/mcp_server_config/v1/mcp_server_config.py:103
                os.environ[key] = interpolated_value

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ba45ad86eac18c9b Environment-variable access.
repo/fastmcp_slim/fastmcp/utilities/mcp_server_config/v1/mcp_server_config.py:128
            return os.environ.get(var_name, match.group(0))

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #127984a459b90ca4 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/mcp_server_config/v1/mcp_server_config.py:442
        with open(output, "w") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b4957f006aec2344 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/skills.py:208
            file_path.write_text(content.text)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #43e4d8305e44379e Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/types.py:286
            with open(self.path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #199f9e5c0b95427a Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/types.py:358
            with open(self.path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #bb6e13394b520c05 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/types.py:418
            with open(self.path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #8ee6ab926cf37035 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/version_check.py:40
        data = json.loads(cache_path.read_text())

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #9775d78e8d6a874c Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/version_check.py:51
        cache_path.write_text(
            json.dumps({"latest_version": latest_version, "timestamp": time.time()})
        )

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low egress production #ad35ba1910d3229d Hardcoded external endpoint. Review what data is sent to this destination.
repo/fastmcp_slim/fastmcp/utilities/version_check.py:69
        response = httpx.get(PYPI_URL, timeout=REQUEST_TIMEOUT_SECONDS)

Data is sent to a hardcoded external endpoint; review what leaves the process.

Fix: Verify the destination and that only non-sensitive data is sent; pin and audit the dependency.

low env_fs production #d93f402677a19647 Environment-variable access.
repo/scripts/auto_close_duplicates.py:290
    token = os.environ.get("GITHUB_TOKEN")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b23c523efed5ab28 Environment-variable access.
repo/scripts/auto_close_duplicates.py:294
    owner = os.environ.get("GITHUB_REPOSITORY_OWNER", "prefecthq")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b97ae3055a6ee46e Environment-variable access.
repo/scripts/auto_close_duplicates.py:295
    repo = os.environ.get("GITHUB_REPOSITORY_NAME", "fastmcp")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #0cc232ab6fec4165 Environment-variable access.
repo/scripts/auto_close_needs_mre.py:336
    token = os.environ.get("GITHUB_TOKEN")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #15ff788a48e9b733 Environment-variable access.
repo/scripts/auto_close_needs_mre.py:340
    owner = os.environ.get("GITHUB_REPOSITORY_OWNER", "prefecthq")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #888ab98a0c041eb4 Environment-variable access.
repo/scripts/auto_close_needs_mre.py:341
    repo = os.environ.get("GITHUB_REPOSITORY_NAME", "fastmcp")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

first-party (python): fastmcp_slim

python first-party
medium telemetry production #dc4a28483f630491 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/client/mixins/tools.py:11
from opentelemetry.trace import Status, StatusCode

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #3263e338ce26733e Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/client/telemetry.py:6
from opentelemetry.trace import Span, SpanKind, Status, StatusCode

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #a708b886a9baf3c0 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/server/sampling/run.py:29
from opentelemetry.trace import SpanKind, Status, StatusCode

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #b5c6091dfd4b3aad Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/server/telemetry.py:7
from opentelemetry.context import Context

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #1c0a502d30149cb6 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/server/telemetry.py:8
from opentelemetry.trace import Span, SpanKind, Status, StatusCode, get_current_span

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #3c3ee6f62d2c8650 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:26
from opentelemetry import context as otel_context

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #25d65a37af84c245 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:27
from opentelemetry import propagate, trace

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #0f8e807213733397 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:28
from opentelemetry.context import Context

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #831034a90b82cea6 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:29
from opentelemetry.trace import Span, Status, StatusCode, Tracer

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

medium telemetry production #cda4d88ebf1029ba Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
repo/fastmcp_slim/fastmcp/telemetry.py:30
from opentelemetry.trace import get_tracer as otel_get_tracer

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

expand_more 49 low-confidence finding(s)
low env_fs production #326b5ebfb22df9ef Filesystem access.
repo/fastmcp_slim/fastmcp/cli/apps_dev.py:1343
        app_bridge_js = app_bridge_cache.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #094853676454bcdc Filesystem access.
repo/fastmcp_slim/fastmcp/cli/apps_dev.py:1365
    app_bridge_cache.write_text(app_bridge_js, encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1c2ac8e06f120cfa Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/apps_dev.py:1699
    env = {**os.environ, "FASTMCP_LOG_LEVEL": "WARNING"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #8465dbd1da5de002 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/cimd.py:123
        with open(output_path, "w") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #aa610d0e154068e3 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/cli.py:310
        env = dict(os.environ.items()) | env_vars | {"FASTMCP_UV_SPAWNED": "1"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #4dfae5a91e713824 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/cli.py:747
        env = os.environ | {"FASTMCP_UV_SPAWNED": "1"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #e5726a9ca30ac1bc Filesystem access.
repo/fastmcp_slim/fastmcp/cli/cli.py:884
                with open(Path(server_spec)) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2185dc64fd6852f5 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/cli.py:920
        env = os.environ | {"FASTMCP_UV_SPAWNED": "1"}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #d738a2b14244909c Filesystem access.
repo/fastmcp_slim/fastmcp/cli/client.py:140
        data = json.loads(path.read_text())

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #528dc0230f130fb5 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:123
        text = path.read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #498ce22220235a4e Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:148
            os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"), "Claude"

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #a122d262f16b3e24 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:161
        text = path.read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #0750645f3b07d593 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:259
            os.environ.get("APPDATA", Path.home() / "AppData" / "Roaming"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #64efc1536aa3996a Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:266
            os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1b8de6d70ad990a1 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/discovery.py:272
        text = path.read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #fda16be2796a52aa Filesystem access.
repo/fastmcp_slim/fastmcp/cli/generate.py:770
    output_path.write_text(script)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #eb15fd92112916cc Filesystem access.
repo/fastmcp_slim/fastmcp/cli/generate.py:784
        skill_path.write_text(skill_content)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #7e14df51c643f785 Environment-variable access.
repo/fastmcp_slim/fastmcp/cli/install/claude_desktop.py:39
            os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"), "Claude"

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5554300dfc4720e7 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/install/claude_desktop.py:118
            content = config_file.read_text().strip()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #31a6b98a10047130 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/install/cursor.py:130
            config_file.write_text('{"mcpServers": {}}')

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #be68d5e874b4144a Filesystem access.
repo/fastmcp_slim/fastmcp/cli/install/shared.py:82
            with open(config_path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #7f2d803e59d00e59 Filesystem access.
repo/fastmcp_slim/fastmcp/cli/run.py:173
        with open(config_path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5cb18b5440d26b47 Environment-variable access.
repo/fastmcp_slim/fastmcp/client/transports/stdio.py:430
            env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #393799abe69b785b Environment-variable access.
repo/fastmcp_slim/fastmcp/client/transports/stdio.py:497
            env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #557d451cd260cb9a Environment-variable access.
repo/fastmcp_slim/fastmcp/client/transports/stdio.py:559
            env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #83901ab4323ab9e1 Filesystem access.
repo/fastmcp_slim/fastmcp/mcp_config.py:334
        file_path.write_text(self.model_dump_json(indent=2), encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #61badb56b89d9038 Filesystem access.
repo/fastmcp_slim/fastmcp/mcp_config.py:340
            content := file_path.read_text(encoding="utf-8").strip()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #cce3751fd90aa650 Filesystem access.
repo/fastmcp_slim/fastmcp/resources/types.py:103
                content: str | bytes = await self._async_path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #eea43686feb0e6b5 Filesystem access.
repo/fastmcp_slim/fastmcp/resources/types.py:105
                content = await self._async_path.read_text(encoding=self.encoding)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #fc94475c86ca8e02 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/_common.py:80
    with open(path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #5a017a936a76be79 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:57
            return main_file_path.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #bde5409192e6972a Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:96
            return full_path.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #916610cd8dcbc32c Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:98
            return full_path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #054daddda417362c Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:170
            return full_path.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2d18515b5a49d920 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:172
            return full_path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #138232e4c30d2849 Filesystem access.
repo/fastmcp_slim/fastmcp/server/providers/skills/skill_provider.py:242
        content = main_file.read_text(encoding="utf-8")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #2bf880c7ac1c3583 Environment-variable access.
repo/fastmcp_slim/fastmcp/settings.py:20
ENV_FILE = os.getenv("FASTMCP_ENV_FILE", ".env")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #07ef9f8a4658bb64 Environment-variable access.
repo/fastmcp_slim/fastmcp/utilities/cli.py:30
    return bool(os.environ.get("FASTMCP_UV_SPAWNED"))

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #1fe2e934099a8be3 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/cli.py:76
                with open(config_path) as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #bfb56842de44504c Environment-variable access.
repo/fastmcp_slim/fastmcp/utilities/mcp_server_config/v1/mcp_server_config.py:103
                os.environ[key] = interpolated_value

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #ba45ad86eac18c9b Environment-variable access.
repo/fastmcp_slim/fastmcp/utilities/mcp_server_config/v1/mcp_server_config.py:128
            return os.environ.get(var_name, match.group(0))

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #127984a459b90ca4 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/mcp_server_config/v1/mcp_server_config.py:442
        with open(output, "w") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #b4957f006aec2344 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/skills.py:208
            file_path.write_text(content.text)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #43e4d8305e44379e Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/types.py:286
            with open(self.path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #199f9e5c0b95427a Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/types.py:358
            with open(self.path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #bb6e13394b520c05 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/types.py:418
            with open(self.path, "rb") as f:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #8ee6ab926cf37035 Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/version_check.py:40
        data = json.loads(cache_path.read_text())

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #9775d78e8d6a874c Filesystem access.
repo/fastmcp_slim/fastmcp/utilities/version_check.py:51
        cache_path.write_text(
            json.dumps({"latest_version": latest_version, "timestamp": time.time()})
        )

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low egress production #ad35ba1910d3229d Hardcoded external endpoint. Review what data is sent to this destination.
repo/fastmcp_slim/fastmcp/utilities/version_check.py:69
        response = httpx.get(PYPI_URL, timeout=REQUEST_TIMEOUT_SECONDS)

Data is sent to a hardcoded external endpoint; review what leaves the process.

Fix: Verify the destination and that only non-sensitive data is sent; pin and audit the dependency.

first-party (python): fastmcp_remote

python first-party
expand_more 2 low-confidence finding(s)
low env_fs production #1d9d79537ab0ee41 Environment-variable access.
repo/fastmcp_remote/fastmcp_remote/cli.py:79
            lambda match: os.environ[match.group(1)], header_value

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs production #6503138f75601a2a Environment-variable access.
repo/fastmcp_remote/fastmcp_remote/cli.py:99
    if config_dir := os.environ.get("FASTMCP_REMOTE_CONFIG_DIR"):

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

</> Dependencies

rich

python dependency
medium telemetry dependency Excluded from app score #a893d82b3bad7335 Telemetry/analytics SDK usage detected. Confirm user consent and that no PII is sent without a lawful basis.
pkgs/python/[email protected]/rich/progress.py:173
        yield from progress.track(
            sequence,
            total=total,
            completed=completed,
            description=description,
            update_period=update_period,
        )

A telemetry/analytics SDK is used; event data is sent to a third-party collector.

Fix: Ensure user consent and a lawful basis; strip PII from event payloads.

expand_more 22 low-confidence finding(s)
low env_fs dependency Excluded from app score #9f0410e93a9c7e46 Environment-variable access.
pkgs/python/[email protected]/rich/_unicode_data/__init__.py:67
        unicode_version = os.environ.get("UNICODE_VERSION", "latest")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #f1d89e0f86ec4de8 Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:441
        self.write_text(text)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #5fd231bc1d87c77d Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:612
    term.write_text("went back and wrapped to prev line")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #64e68c0d92f27c98 Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:615
    term.write_text("we go up")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #e892499e1733d6f7 Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:618
    term.write_text("and down")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #b386321f672b5643 Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:623
    term.write_text("we went up and back 2")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #4dd7d416ba261166 Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:628
    term.write_text("we went down and back 2")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #dca98684a345b3ad Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:636
    term.write_text("The red arrow shows the cursor location, and direction of erase")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #15e68680fc36f40f Filesystem access.
pkgs/python/[email protected]/rich/_win32_console.py:646
    term.write_text("The red arrow shows the cursor location, and direction of erase")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #8ff3e2f0e37253af Filesystem access.
pkgs/python/[email protected]/rich/_windows_renderer.py:19
                term.write_text(text)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #e630f94d7f78f405 Filesystem access.
pkgs/python/[email protected]/rich/_windows_renderer.py:28
                    term.write_text("\r")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #53f2f1de41f207fa Environment-variable access.
pkgs/python/[email protected]/rich/console.py:515
        or os.getenv("DATABRICKS_RUNTIME_VERSION")

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #e931f14437b89cb8 Environment-variable access.
pkgs/python/[email protected]/rich/console.py:617
    _environ: Mapping[str, str] = os.environ

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #8fdc977e6b5d0c2e Filesystem access.
pkgs/python/[email protected]/rich/console.py:2241
        with open(path, "w", encoding="utf-8") as write_file:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #dd9ca9402529517c Filesystem access.
pkgs/python/[email protected]/rich/console.py:2349
        with open(path, "w", encoding="utf-8") as write_file:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #f6fa7b42faf0f82e Filesystem access.
pkgs/python/[email protected]/rich/console.py:2641
        with open(path, "w", encoding="utf-8") as write_file:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #e549b206dfa2d02c Environment-variable access.
pkgs/python/[email protected]/rich/diagnose.py:32
    env = {name: os.getenv(name) for name in env_names}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #9f480a4bb53dd17a Filesystem access.
pkgs/python/[email protected]/rich/json.py:134
            json_data = Path(args.path).read_text()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #944319f85e2c3a9a Filesystem access.
pkgs/python/[email protected]/rich/markdown.py:777
        with open(args.path, encoding="utf-8") as markdown_file:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #fefcb998eff73ace Filesystem access.
pkgs/python/[email protected]/rich/progress.py:1373
        handle = io.open(file, "rb", buffering=buffering)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #deb899873068e661 Filesystem access.
pkgs/python/[email protected]/rich/syntax.py:360
        code = Path(path).read_text(encoding=encoding)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #58318d14412e01a5 Filesystem access.
pkgs/python/[email protected]/rich/theme.py:73
        with open(path, encoding=encoding) as config_file:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

platformdirs

python dependency
expand_more 33 low-confidence finding(s)
low env_fs dependency Excluded from app score #f931faec57b191d1 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/__init__.py:33
    if os.getenv("ANDROID_DATA") == "/data" and os.getenv("ANDROID_ROOT") == "/system":

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #26050a3a062aaf0a Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/__init__.py:34
        if os.getenv("SHELL") or os.getenv("PREFIX"):

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #a0776ed4d2532ecf Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:16
        if path := os.environ.get("XDG_DATA_HOME", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #c7303309b028ea8d Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:22
        if xdg_dirs := os.environ.get("XDG_DATA_DIRS", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #648a2125da51a299 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:35
        if path := os.environ.get("XDG_CONFIG_HOME", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #ad220da654e0cbd9 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:41
        if xdg_dirs := os.environ.get("XDG_CONFIG_DIRS", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #5f7b816cdc146bea Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:54
        if path := os.environ.get("XDG_CACHE_HOME", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #b82f1f4e6cc7fe5a Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:61
        if path := os.environ.get("XDG_STATE_HOME", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #355396706c1b560d Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:68
        if path := os.environ.get("XDG_RUNTIME_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #d1569f21d463e695 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:75
        if path := os.environ.get("XDG_RUNTIME_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #0968676d1ab4ce81 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:82
        if path := os.environ.get("XDG_DOCUMENTS_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #3365aedecea045d6 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:89
        if path := os.environ.get("XDG_DOWNLOAD_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #131f189ecd1eaaa3 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:96
        if path := os.environ.get("XDG_PICTURES_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #2cab16905053166c Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:103
        if path := os.environ.get("XDG_VIDEOS_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #0d3b6be1e498144d Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:110
        if path := os.environ.get("XDG_MUSIC_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #af748a70ef679eed Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:117
        if path := os.environ.get("XDG_DESKTOP_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #b98d802b40e3ee50 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:124
        if path := os.environ.get("XDG_PROJECTS_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #0157f14f06fec90c Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:131
        if path := os.environ.get("XDG_PUBLICSHARE_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #37034ff2dfc999a2 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:138
        if path := os.environ.get("XDG_TEMPLATES_DIR", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #5dd9b0f03a2eda58 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:145
        if path := os.environ.get("XDG_DATA_HOME", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #a21cc103c4410648 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:152
        if path := os.environ.get("XDG_DATA_HOME", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #bb8aa3408b1de0b5 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/_xdg.py:158
        if xdg_dirs := os.environ.get("XDG_DATA_DIRS", "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #27a9b18fa5e1fdd2 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/unix.py:302
    config_home = os.environ.get("XDG_CONFIG_HOME", "").strip() or os.path.expanduser("~/.config")  # noqa: PTH111

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #e92e20b6ab0e787d Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:145
        return os.path.normpath(os.environ.get("PUBLIC", str(Path("~").expanduser().parent / "Public")))

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #7a6c540bfe17eb29 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:208
    result = os.environ.get(env_var_name)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #5a3e3569737a34d9 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:218
        return os.path.join(os.path.normpath(os.environ["USERPROFILE"]), "Documents")  # noqa: PTH118

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #41b94c96f293eb7d Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:221
        return os.path.join(os.path.normpath(os.environ["USERPROFILE"]), "Downloads")  # noqa: PTH118

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #0b962c41305e2d29 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:224
        return os.path.join(os.path.normpath(os.environ["USERPROFILE"]), "Pictures")  # noqa: PTH118

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #27754441851f508d Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:227
        return os.path.join(os.path.normpath(os.environ["USERPROFILE"]), "Videos")  # noqa: PTH118

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #38b21cd22ef1eb26 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:230
        return os.path.join(os.path.normpath(os.environ["USERPROFILE"]), "Music")  # noqa: PTH118

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #57372bcbee56360a Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:234
            os.path.normpath(os.environ["APPDATA"]),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #ed22f347b555653e Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:243
            os.path.normpath(os.environ.get("PROGRAMDATA", os.environ.get("ALLUSERSPROFILE", "C:\\ProgramData"))),

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #63a32afce8b9e0f7 Environment-variable access.
pkgs/python/[email protected]/src/platformdirs/windows.py:388
    if override := os.environ.get(env_var, "").strip():

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

pydantic

python dependency
expand_more 9 low-confidence finding(s)
low env_fs dependency Excluded from app score #69faadfa1cab8051 Filesystem access.
pkgs/python/[email protected]/pydantic/deprecated/parse.py:71
    b = path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #64207cf80627478f Environment-variable access.
pkgs/python/[email protected]/pydantic/json_schema.py:344
                if os.getenv('PYDANTIC_PRIVATE_ALLOW_UNHANDLED_SCHEMA_TYPES'):

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #61a5a10bd1c31deb Filesystem access.
pkgs/python/[email protected]/pydantic/mypy.py:1411
    with open(config_file, 'rb') as rf:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #d00c651a5f4ae419 Environment-variable access.
pkgs/python/[email protected]/pydantic/plugin/_loader.py:27
    disabled_plugins = os.getenv('PYDANTIC_DISABLE_PLUGINS')

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #c34aa488b5649018 Environment-variable access.
pkgs/python/[email protected]/pydantic/v1/env_settings.py:173
            env_vars: Mapping[str, Optional[str]] = os.environ

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #389abf18a7c3c305 Environment-variable access.
pkgs/python/[email protected]/pydantic/v1/env_settings.py:175
            env_vars = {k.lower(): v for k, v in os.environ.items()}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #7dece31b424babeb Filesystem access.
pkgs/python/[email protected]/pydantic/v1/env_settings.py:307
                    secret_value = path.read_text().strip()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #d6bffad9c9ef6564 Filesystem access.
pkgs/python/[email protected]/pydantic/v1/mypy.py:948
    with open(config_file, read_mode) as rf:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #d3062725bd63f746 Filesystem access.
pkgs/python/[email protected]/pydantic/v1/parse.py:57
    b = path.read_bytes()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

pydantic-settings

python dependency
expand_more 3 low-confidence finding(s)
low env_fs dependency Excluded from app score #749a4837db2c1f68 Environment-variable access.
pkgs/python/[email protected]/pydantic_settings/sources/providers/env.py:75
        return parse_env_vars(os.environ, self.case_sensitive, self.env_ignore_empty, self.env_parse_none_str)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #e6e6c73dde562f81 Filesystem access.
pkgs/python/[email protected]/pydantic_settings/sources/providers/nested_secrets.py:203
        return {str(p.relative_to(path)): p.read_text().strip() for p in cls._iter_secret_files(path)}

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #40c662a85bbc3446 Filesystem access.
pkgs/python/[email protected]/pydantic_settings/sources/providers/secrets.py:122
                    return path.read_text().strip(), field_key, value_is_complex

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

python-dotenv

python dependency
expand_more 11 low-confidence finding(s)
low env_fs dependency Excluded from app score #f9c4a5783af57524 Filesystem access.
pkgs/python/[email protected]/src/dotenv/cli.py:76
        with open(path) as stream:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #6622f3622c8ee119 Environment-variable access.
pkgs/python/[email protected]/src/dotenv/cli.py:194
        if v is not None and (override or k not in os.environ)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #5697f5883fe52c7a Environment-variable access.
pkgs/python/[email protected]/src/dotenv/cli.py:225
    cmd_env = os.environ.copy()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #96a25f78b62eb581 Environment-variable access.
pkgs/python/[email protected]/src/dotenv/main.py:26
    if "PYTHON_DOTENV_DISABLED" not in os.environ:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #c8702dc8f416e8d4 Environment-variable access.
pkgs/python/[email protected]/src/dotenv/main.py:28
    value = os.environ["PYTHON_DOTENV_DISABLED"].casefold()

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #165b7f3e91b150ab Filesystem access.
pkgs/python/[email protected]/src/dotenv/main.py:63
            with open(self.dotenv_path, encoding=self.encoding) as stream:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #78c9cd2c79675ae3 Environment-variable access.
pkgs/python/[email protected]/src/dotenv/main.py:105
            if k in os.environ and not self.override:

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #4103c430aeae21b5 Environment-variable access.
pkgs/python/[email protected]/src/dotenv/main.py:108
                os.environ[k] = v

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #cc64651f16a01f6f Filesystem access.
pkgs/python/[email protected]/src/dotenv/main.py:148
        source: IO[str] = open(path, encoding=encoding)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #4ab3b423ad6f9ad6 Environment-variable access.
pkgs/python/[email protected]/src/dotenv/main.py:302
                env.update(os.environ)  # type: ignore

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #47f4ff030a4379ac Environment-variable access.
pkgs/python/[email protected]/src/dotenv/main.py:306
                env.update(os.environ)  # type: ignore

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

typing-extensions

python dependency
expand_more 7 low-confidence finding(s)
low env_fs dependency Excluded from app score #b1e8c42189527c20 Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:1698
            Path(tempdir, "ann_module.py").write_text(ANN_MODULE_SOURCE)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #1712db38d83c731f Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:1699
            Path(tempdir, "ann_module2.py").write_text(ANN_MODULE_2_SOURCE)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #6c1a14351779e244 Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:1700
            Path(tempdir, "ann_module3.py").write_text(ANN_MODULE_3_SOURCE)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #0eefb65a02a217a5 Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:8783
            Path(tempdir, "inspect_stock_annotations.py").write_text(STOCK_ANNOTATIONS)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #efc14d14bbec3068 Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:8784
            Path(tempdir, "inspect_stringized_annotations.py").write_text(STRINGIZED_ANNOTATIONS)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #6967055dc771d47d Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:8785
            Path(tempdir, "inspect_stringized_annotations_2.py").write_text(STRINGIZED_ANNOTATIONS_2)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.

low env_fs dependency Excluded from app score #1758e4176eae5909 Filesystem access.
pkgs/python/[email protected]/src/test_typing_extensions.py:9234
            Path(tempdir, "inspect_stringized_annotations_pep_695.py").write_text(STRINGIZED_ANNOTATIONS_PEP_695)

Reads environment variables or the filesystem — an inventory-level capability, not a leak on its own.

Fix: Usually benign; confirm any secret read here is not later sent externally.