Environment variable access combined with network send.
Critical
- Code
- suspicious.env_credential_access
- Location
- e2e-test.mjs:12
- Evidence
const TELNYX_API_KEY = process.env.TELNYX_API_KEY;
Security audit
Security checks across malware telemetry and agentic risk
This appears to be a straightforward Telnyx embeddings provider that uses a Telnyx API key and sends embedding text to Telnyx as disclosed.
This skill looks benign for its stated purpose. Before installing, make sure you are comfortable using a Telnyx API key and sending memory-search embedding text to Telnyx, since that is how the provider works.
62/62 vendors flagged this plugin as clean.
Detected: suspicious.env_credential_access
const TELNYX_API_KEY = process.env.TELNYX_API_KEY;