critical
malicious.crypto_mining
- Location
- tests/detector.test.js:99
- Finding
- Possible crypto mining behavior detected.
ClawGuard by jugaad-lab
MaliciousAudited by Static analysis on Apr 30, 2026.
Overview
Detected: malicious.crypto_mining, suspicious.env_credential_access, suspicious.potential_exfiltration (+1 more)
Findings (5)
critical
suspicious.env_credential_access
- Location
- scripts/transform-research.js:16
- Finding
- Environment variable access combined with network send.
warn
suspicious.potential_exfiltration
- Location
- scripts/transform-research.js:9
- Finding
- File read combined with network send (possible exfiltration).
warn
suspicious.prompt_injection_instructions
- Location
- README.md:69
- Finding
- Prompt-injection style instruction pattern detected.
warn
suspicious.prompt_injection_instructions
- Location
- SKILL.md:269
- Finding
- Prompt-injection style instruction pattern detected.