Audit and enforce environment variable rules before any task that touches API keys or config. Use before running pipelines, debugging auth failures, or setting up a new environment. Triggers on "check env", "missing key", "API key", ".env", "GEMINI_API_KEY", or any config-related pre-flight check.