Back to skill

Security audit

tencentcloud-trtccopilot-sdk-log-analysis

Security checks across malware telemetry and agentic risk

Overview

No artifact-backed malicious or review-worthy behavior was available in the supplied evidence, but the artifact could not be independently inspected in this run.

Install only if you can review the actual skill files or trust the publisher, because this adjudication had limited evidence and could not confirm the package contents directly.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec, suspicious.dynamic_code_execution, suspicious.install_untrusted_source

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/analyze-local.js:123

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/lib/copilot-cli.js:7

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/lib/decoder.js:48

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/serve-viewer.js:269

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
tests/analyze-local-large.test.mjs:21

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
tests/timeline-cli-cache.test.mjs:21

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
tests/timeline-cli-guards.test.mjs:14

Dynamic code execution detected.

Critical
Code
suspicious.dynamic_code_execution
Location
vendor/art-template/lib/compile/compiler.js:314

Dynamic code execution detected.

Critical
Code
suspicious.dynamic_code_execution
Location
vendor/art-template/lib/template-web.js:2

Install source points to URL shortener or raw IP.

Warn
Code
suspicious.install_untrusted_source
Location
data/api/log-rule.json:4210