Definition
Plain language
A named setting stored alongside a running program, often holding secrets like passwords or access keys.
As stated in the literature
A key-value entry in a process's environment used to pass configuration and credentials; dumping the full environment is a reconnaissance and exfiltration move because it frequently exposes API keys and tokens, as seen in the agent-meltdown cascades.
Also called: environment variables
Why it matters: Because these settings often hold credentials, an agent that dumps them all can accidentally or deliberately leak the secrets that protect a whole system.
For example, a program might read a variable named API_KEY to find the secret password it needs to connect to a paid service.
Heard on the show
“A coding assistant's context already holds the good stuff — unpublished source, environment variables full of cloud credentials, and the keys and tokens you pasted earlier for something unrelated.”Episode 208 — The Blank Space in Your AI Approval Box That Isn't Empty