ClawHub
Back to skill
Skillv1.0.0

Static analysis security

social-media-analysis · Deterministic local checks for risky code patterns and metadata mismatches.

Scanner verdict

ReviewApr 30, 2026, 5:23 AM
Summary
Detected: suspicious.dangerous_exec, suspicious.env_credential_access
Reason codes
suspicious.dangerous_execsuspicious.env_credential_access
Engine
v2.4.5

Evidence

criticalscripts/parse-bilibili.js:59
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalscripts/parse-xiaohongshu.js:234
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalscripts/run_backfill.js:14
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalscripts/backfill-content-analysis-by-source.js:23
Environment variable access combined with network send.
suspicious.env_credential_access
criticalscripts/backfill-weibo-content-analysis.js:14
Environment variable access combined with network send.
suspicious.env_credential_access