critical
suspicious.exposed_secret_literal
- Location
- docs/detection-prompt.md:155
- Finding
- File appears to expose a hardcoded API secret or token.
Memory Scan
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal, suspicious.prompt_injection_instructions
Findings (4)
critical
suspicious.exposed_secret_literal
- Location
- evals/cases.json:38
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- scripts/test-scan.sh:37
- Finding
- File appears to expose a hardcoded API secret or token.
warn
suspicious.prompt_injection_instructions
- Location
- docs/detection-prompt.md:152
- Finding
- Prompt-injection style instruction pattern detected.