Skillv2.0.0

Static analysis security

dalongxia-auth · Deterministic local checks for risky code patterns and metadata mismatches.

SuspiciousApr 30, 2026, 5:32 AM

Summary: Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
Reason codes: suspicious.env_credential_accesssuspicious.potential_exfiltration
Engine: v2.4.5

criticalindex.js:18

Environment variable access combined with network send.

suspicious.env_credential_access

criticalskill.js:23

Environment variable access combined with network send.

suspicious.env_credential_access

warnindex.js:37

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration

warnskill.js:74

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration