Skillv1.0.10

Static analysis security

sol-bsc-dev-monitor-skill · Deterministic local checks for risky code patterns and metadata mismatches.

ReviewApr 30, 2026, 5:07 AM

Summary: Detected: suspicious.env_credential_access, suspicious.exposed_secret_literal, suspicious.potential_exfiltration
Reason codes: suspicious.env_credential_accesssuspicious.exposed_secret_literalsuspicious.potential_exfiltration
Engine: v2.4.5

criticalindex-sol-safe.js:9

Environment variable access combined with network send.

suspicious.env_credential_access

criticalSKILL.md:9

Documentation appears to expose a hardcoded API secret or token.

suspicious.exposed_secret_literal

warnindex-sol-safe.js:26

File read combined with network send (possible exfiltration).

suspicious.potential_exfiltration