ATR-2026-00146highContext Exfiltrationexperimental
Environment Variable Existence Probing
Detects responses that confirm the existence of sensitive environment variables while claiming inability to access them — a social engineering technique to get the agent to try accessing the value. Crystallized from 31 adversarial samples.
Severity
high
Category
Context Exfiltration
Scan Target
mcp
Author
ATR Threat Cloud Crystallization
Response Actions
alertblock output
References
OWASP Agentic
ASI08 - Data Leakage
OWASP LLM
LLM02:2025 - Sensitive Information Disclosure
More Context Exfiltration Rules
ATR-2026-00020highSystem Prompt and Internal Instruction LeakageATR-2026-00021criticalCredential and Secret Exposure in Agent OutputATR-2026-00075highAgent Memory ManipulationATR-2026-00102highData Exfiltration via Disguised Analytics CollectionATR-2026-00113criticalCredential File Theft from Agent Environment