Shell command execution detected (child_process).
Critical
- Code
- suspicious.dangerous_exec
- Location
- tests/compliance.test.js:97
- Evidence
it('no execSync("npm install") or child_process npm install', () => {
Security audit
Security checks across malware telemetry and agentic risk
This security monitor is mostly purpose-aligned, but it automatically inspects broad agent activity and may write sensitive request URLs into logs, so it deserves review before installation.
Review the logging behavior before installing. The plugin does not show obvious exfiltration or hidden install behavior, but it is an always-on monitor with broad visibility into agent activity, and secrets in request URLs may be written to logs unless the publisher adds redaction.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dangerous_exec, suspicious.dynamic_code_execution, suspicious.exposed_secret_literal
it('no execSync("npm install") or child_process npm install', () => {it('no eval() calls', () => {const v = detectInsecureOutput('Authorization: Bearer [REDACTED]', 'test');