Pluginv0.1.2

Static analysis security

AIWork Channel · Deterministic local checks for risky code patterns and metadata mismatches.

SuspiciousApr 18, 2026, 3:51 AM

Summary: Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
Reason codes: suspicious.env_credential_accesssuspicious.potential_exfiltration
Engine: v2.4.0

criticaldist/index.js:118

Environment variable access combined with network send.

? path.join(process.env.HOME ?? "", candidate.slice(2))

criticalindex.ts:121

Environment variable access combined with network send.

? path.join(process.env.HOME ?? "", candidate.slice(2))

warndist/index.js:1

File read combined with network send (possible exfiltration).

import { readFile } from "node:fs/promises";

warnindex.ts:1

File read combined with network send (possible exfiltration).

import { readFile } from "node:fs/promises";