critical
suspicious.exposed_secret_literal
- Location
- src/hive/config.ts:37
- Finding
- File appears to expose a hardcoded API secret or token.
- Evidence
const bearer = [REDACTED](env);
OpenClaw Hawkins — VINES + VECNA
AdvisoryAudited by Static analysis on May 13, 2026.
Overview
Detected: suspicious.exposed_secret_literal