Back to skill
Skillv1.0.0
Static analysis security
Agency HQ · Deterministic local checks for risky code patterns and metadata mismatches.
Scanner verdict
ReviewApr 30, 2026, 5:15 AM
- Summary
- Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.potential_exfiltration
- Reason codes
- suspicious.dangerous_execsuspicious.env_credential_accesssuspicious.potential_exfiltration
- Engine
- v2.4.5
Evidence
criticalsrc/app/api/agents/stats/route.ts:10
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalsrc/app/api/agents/status/route.ts:69
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalsrc/app/api/agents/activity/route.ts:24
Environment variable access combined with network send.
suspicious.env_credential_access
criticalsrc/app/api/agents/stats/route.ts:48
Environment variable access combined with network send.
suspicious.env_credential_access
criticalsrc/app/api/agents/status/route.ts:97
Environment variable access combined with network send.
suspicious.env_credential_access
warnsrc/app/api/agents/activity/route.ts:43
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration
warnsrc/app/api/agents/status/route.ts:43
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration