critical
suspicious.env_credential_access
- Location
- src/adapters/openclaw_llm.ts:17
- Finding
- Environment variable access combined with network send.
Peer Reviewer
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
Findings (3)
critical
suspicious.env_credential_access
- Location
- src/adapters/vertex_ai.ts:47
- Finding
- Environment variable access combined with network send.
warn
suspicious.potential_exfiltration
- Location
- src/adapters/vertex_ai.ts:52
- Finding
- Sensitive-looking file read is paired with a network send.