Exposed secret literal
Critical
- Finding
- File appears to expose a hardcoded API secret or token.
Vmware Avi
Security checks across static analysis, malware telemetry, and agentic risk
Overview
No artifact-backed suspicious behavior could be established, but the workspace artifacts could not be inspected due a local sandbox execution failure.
This result is low confidence because the artifact directory could not be read in the local workspace. Review the SKILL.md, metadata, install steps, and any helper files before installing.
Static analysis
VirusTotal
65/65 vendors flagged this skill as clean.
Risk analysis
No visible risk-analysis findings were reported for this release.