ClawHub
Back to skill
Skillv1.0.0

Static analysis security

pdf · Deterministic local checks for risky code patterns and metadata mismatches.

Scanner verdict

SuspiciousApr 30, 2026, 5:39 AM
Summary
Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
Reason codes
suspicious.env_credential_accesssuspicious.potential_exfiltration
Engine
v2.4.5

Evidence

criticalvoice/index.ts:156
Environment variable access combined with network send.
suspicious.env_credential_access
criticalvoice/src/streaming-tts.ts:45
Environment variable access combined with network send.
suspicious.env_credential_access
criticalvoice/src/stt.ts:37
Environment variable access combined with network send.
suspicious.env_credential_access
criticalvoice/src/tts.ts:48
Environment variable access combined with network send.
suspicious.env_credential_access
warnvoice/src/tts.ts:5
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration