critical
suspicious.dangerous_exec
- Location
- scripts/validate.ts:46
- Finding
- Shell command execution detected (child_process).
Basecamp CLI
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.exposed_secret_literal
Findings (7)
critical
suspicious.env_credential_access
- Location
- src/__tests__/example.test.ts:48
- Finding
- Environment variable access combined with network send.
critical
suspicious.exposed_secret_literal
- Location
- src/__tests__/config.test.ts:16
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- src/__tests__/mocks/handlers.ts:392
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- src/__tests__/setup.ts:26
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- src/lib/auth.ts:182
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- src/lib/config.ts:131
- Finding
- File appears to expose a hardcoded API secret or token.