Shell command execution detected (child_process).
Critical
- Code
- suspicious.dangerous_exec
- Location
- index.mjs:94
- Evidence
const out = execFileSync(
Security audit
Security checks across malware telemetry and agentic risk
Agent Guard is a disclosed security plugin that auto-screens tool-call text with a local Python helper, with the main cautions being its broad hook and external helper dependency.
This skill appears benign and purpose-aligned for automatic prompt-injection screening. Before installing, make sure you trust the separately installed Python package, understand that the plugin runs on startup and inspects textual tool-call parameters, and remember that it fails open if the helper cannot run.
61/61 vendors flagged this plugin as clean.
Detected: suspicious.dangerous_exec
const out = execFileSync(