critical
suspicious.exposed_secret_literal
- Location
- index.js:231
- Finding
- File appears to expose a hardcoded API secret or token.
- Evidence
const apiKey = [REDACTED] || readAgntConfig()?.apiKey
Facebook API
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal