Dangerous exec
Critical
- Finding
- Shell command execution detected (child_process).
- Skill content
const result = execFileSync(cmd, [name], { encoding: "utf8" }).trim();
Find My
Security checks across static analysis, malware telemetry, and agentic risk
Overview
No risk analysis has been recorded yet.
Static analysis
Dangerous exec
Critical
- Finding
- Shell command execution detected (child_process).
- Skill content
* - Spawns via execFile (NOT exec / shell): argv is passed as a token array,
VirusTotal
60/60 vendors flagged this plugin as clean.
Risk analysis
No visible risk-analysis findings were reported for this release.