Skillv1.0.1

Static analysis security

exchange_rate_assistant · Deterministic local checks for risky code patterns and metadata mismatches.

ReviewApr 30, 2026, 5:24 AM

Summary: Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
Reason codes: suspicious.env_credential_accesssuspicious.potential_exfiltration
Engine: v2.4.5

criticalscripts/prana_skill_client.js:26

Environment variable access combined with network send.

suspicious.env_credential_access

warnscripts/prana_skill_client.js:90

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration