critical
suspicious.exposed_secret_literal
- Location
- bin/call-x402.mjs:37
- Finding
- File appears to expose a hardcoded API secret or token.
Ghost Protocol OpenClaw Pay
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal
Findings (2)
critical
suspicious.exposed_secret_literal
- Location
- bin/report-x402-settlement.mjs:66
- Finding
- File appears to expose a hardcoded API secret or token.