ClawHub
Back to plugin
Pluginv1.3.5

Static analysis security

A2H Market · Deterministic local checks for risky code patterns and metadata mismatches.

Scanner verdict

SuspiciousApr 10, 2026, 3:44 PM
Summary
Detected: suspicious.potential_exfiltration
Reason codes
suspicious.potential_exfiltration
Engine
v2.2.0

Evidence

warnsrc/pending-welcome.ts:12
File read combined with network send (possible exfiltration).
import { readFileSync, unlinkSync, mkdirSync } from "node:fs";
warnsrc/tools/auth.ts:4
File read combined with network send (possible exfiltration).
import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";