Dangerous exec
Critical
- Finding
- Shell command execution detected (child_process).
ACP Code Agent
Security checks across static analysis, malware telemetry, and agentic risk
Overview
No evidence-backed suspicious behavior was identified, but the workspace artifacts could not be inspected because local command execution failed in the sandbox.
This result is low confidence because the artifact files could not be inspected in the workspace. Re-run the review in an environment where metadata.json and artifact/ can be read before relying on this assessment.
Static analysis
Destructive delete command
Warn
- Finding
- Documentation contains a destructive delete command without an explicit confirmation gate.
VirusTotal
VirusTotal engine telemetry is currently stale for this artifact.
Risk analysis
No visible risk-analysis findings were reported for this release.