# LLM Model Theft

- ID: go-llm-model-theft
- Severity: HIGH
- CWE: Information Exposure (CWE-200)
- Languages: Go

## Description

Detects vulnerabilities leading to model theft or API key exposure such as hardcoded keys or insecure model endpoints.

## Detection Message

Model theft vulnerability: {issue_type}

## Remediation

Use environment variables for API keys and authenticate model endpoints.

```go
client := openai.NewClient(os.Getenv("OPENAI_API_KEY"))
```

Learn more: https://shoulder.dev/learn/go/cwe-200/llm-model-theft

## Documentation

[object Object]

## Related Rules

- **Environment Variable Secret Exposure** [HIGH]: 
- **LLM Sensitive Information Disclosure** [HIGH]: 
- **Sensitive Field Exposure in API Response** [CRITICAL]: 
- **Environment Variable Secret Exposure** [HIGH]: 
- **LLM Model Theft** [HIGH]: