Back to skill
Skillv1.0.0
Static analysis security
Agent Manager · Deterministic local checks for risky code patterns and metadata mismatches.
Scanner verdict
SuspiciousApr 30, 2026, 5:09 AM
- Summary
- Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.install_untrusted_source (+1 more)
- Reason codes
- suspicious.dangerous_execsuspicious.env_credential_accesssuspicious.install_untrusted_sourcesuspicious.potential_exfiltration
- Engine
- v2.4.5
Evidence
criticalcli.js:13
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalregister-existing.js:51
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalserver-gemini.js:27
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalserver.js:31
Shell command execution detected (child_process).
suspicious.dangerous_exec
criticalserver-gemini.js:14
Environment variable access combined with network send.
suspicious.env_credential_access
criticalserver.js:15
Environment variable access combined with network send.
suspicious.env_credential_access
warnconfig.json:2
Install source points to URL shortener or raw IP.
suspicious.install_untrusted_source
warnserver-gemini.js:35
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration
warnserver.js:39
File read combined with network send (possible exfiltration).
suspicious.potential_exfiltration