critical
suspicious.exposed_secret_literal
- Location
- dist/index.js:11
- Finding
- File appears to expose a hardcoded API secret or token.
- Evidence
this.accessKey = [REDACTED];
NBJ OB1 Agent Memory for OpenClaw
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal
Findings (2)
critical
suspicious.exposed_secret_literal
- Location
- src/client.ts:21
- Finding
- File appears to expose a hardcoded API secret or token.
- Evidence
this.accessKey = [REDACTED];