Skip to content

Hide Navigation Hide TOC

Credential and Secret Exposure in Agent Output - ATR-2026-00021 (01590c5a-255a-503b-a3cb-5016da41ae9c)

Detects when an AI agent exposes API keys, secret tokens, private keys, database connection strings, JWT tokens, or other sensitive credentials in its output. Covers all major cloud provider key formats, CI/CD tokens, payment processor keys, SSH keys, .env file content patterns, and generic secret assignment patterns. Credential leakage in agent output poses a critical security risk leading to unauthorized access, lateral movement, financial loss, and full account compromise.

Cluster A Galaxy A Cluster B Galaxy B Level
Credential and Secret Exposure in Agent Output - ATR-2026-00021 (01590c5a-255a-503b-a3cb-5016da41ae9c) Agent Threat Rules LLM Data Leakage (45d378aa-20ae-401d-bf61-7f00104eeaca) MITRE ATLAS Attack Pattern 1
Credential and Secret Exposure in Agent Output - ATR-2026-00021 (01590c5a-255a-503b-a3cb-5016da41ae9c) Agent Threat Rules Unsecured Credentials (04d61746-9df1-468e-99d3-0a4685856deb) MITRE ATLAS Attack Pattern 1