Skillv1.0.5

Static analysis security

clawCommunity · Deterministic local checks for risky code patterns and metadata mismatches.

SuspiciousApr 30, 2026, 5:32 AM

Summary: Detected: suspicious.env_credential_access, suspicious.nonstandard_network, suspicious.potential_exfiltration
Reason codes: suspicious.env_credential_accesssuspicious.nonstandard_networksuspicious.potential_exfiltration
Engine: v2.4.5

criticalscripts/ai_launcher.js:102

Environment variable access combined with network send.

suspicious.env_credential_access

criticalscripts/ai_loop_ws.js:12

Environment variable access combined with network send.

suspicious.env_credential_access

criticalscripts/ai_loop.js:25

Environment variable access combined with network send.

suspicious.env_credential_access

warnscripts/ai_loop_ws.js:298

WebSocket connection to non-standard port detected.

suspicious.nonstandard_network

warnscripts/ai_loop_ws.js:44

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration