Back to plugin
Pluginv0.5.0
Static analysis security
KongBrain · Deterministic local checks for risky code patterns and metadata mismatches.
Scanner verdict
SuspiciousApr 25, 2026, 8:24 PM
- Summary
- Detected: suspicious.env_credential_access
- Reason codes
- suspicious.env_credential_access
- Engine
- v2.4.0
Evidence
criticalsrc/embeddings-openai.ts:35
Environment variable access combined with network send.
const keyVal = process.env[keyName];