Skillv1.0.3

Static analysis security

Comfyskill · Deterministic local checks for risky code patterns and metadata mismatches.

ReviewMar 14, 2026, 3:26 PM

Summary: Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
Reason codes: suspicious.env_credential_accesssuspicious.potential_exfiltration
Engine: v2.2.0

criticalindex.js:5

Environment variable access combined with network send.

suspicious.env_credential_access

warnindex.js:9

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration