critical
suspicious.dangerous_exec
- Location
- scripts/gemini-webapi/utils/paths.ts:38
- Finding
- Shell command execution detected (child_process).
Baoyu Danger Gemini Web
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.dangerous_exec, suspicious.env_credential_access
Findings (4)
critical
suspicious.dangerous_exec
- Location
- scripts/vendor/baoyu-chrome-cdp/src/index.test.ts:89
- Finding
- Shell command execution detected (child_process).
critical
suspicious.dangerous_exec
- Location
- scripts/vendor/baoyu-chrome-cdp/src/index.ts:220
- Finding
- Shell command execution detected (child_process).
critical
suspicious.env_credential_access
- Location
- scripts/vendor/baoyu-chrome-cdp/src/index.ts:97
- Finding
- Environment variable access combined with network send.