Pluginv0.7.1

Static analysis security

TradeAlpha Open Platform · Deterministic local checks for risky code patterns and metadata mismatches.

SuspiciousApr 29, 2026, 4:41 AM

criticalscripts/get-realtime-news.js:52

Environment variable access combined with network send.

const envToken = process.env[TOKEN_ENV_NAME]?.trim();