Pluginv0.1.0

Static analysis security

Pluri1bus · Deterministic local checks for risky code patterns and metadata mismatches.

Scanner verdict

SuspiciousMar 31, 2026, 10:40 PM

Summary: Detected: suspicious.dangerous_exec
Reason codes: suspicious.dangerous_exec
Engine: v2.2.0

Evidence

criticaldist/index.js:9

Shell command execution detected (child_process).

const mounts = execSync("mount", { encoding: "utf-8", timeout: 3000 });

criticaldist/memory.js:51

Shell command execution detected (child_process).

const output = execSync(`grep -rni ${this.shellEscape(query)} ${this.shellEscape(this.mountPath)}/MEMORY.md ${this.shellEscape(this.mountPath)}/memory/ 2>/dev/n...

criticalsrc/index.ts:16

Shell command execution detected (child_process).

const mounts = execSync("mount", { encoding: "utf-8", timeout: 3000 }) as string;

criticalsrc/memory.ts:59

Shell command execution detected (child_process).

const output = execSync(