Back to skill
Skillv0.1.0
Static analysis security
Xpilot Ad Maker · Deterministic local checks for risky code patterns and metadata mismatches.
Scanner verdict
SuspiciousApr 30, 2026, 5:34 AM
- Summary
- Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.potential_exfiltration
- Reason codes
- suspicious.dangerous_execsuspicious.env_credential_accesssuspicious.potential_exfiltration
- Engine
- v2.4.5
Evidence
criticalmake-xpilot-ad.ts:316
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalxpilot-ad-finalize.ts:246
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticallib/wavespeed.ts:16
Environment variable access combined with network send.
suspicious.env_credential_access
criticalmake-xpilot-ad.ts:34
Environment variable access combined with network send.
suspicious.env_credential_access
criticalxpilot-ad-finalize.ts:27
Environment variable access combined with network send.
suspicious.env_credential_access
warnmake-xpilot-ad.ts:27
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration
warnxpilot-ad-finalize.ts:20
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration