BeCreative

Fail

Audited by Snyk on Jun 30, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

  • Malicious code pattern detected (high risk: 0.90). The skill contains repeated, mandatory, backgrounded HTTP POSTs to localhost:31337 (silenced via >/dev/null 2>&1 &) that run "before any action", which appears to be an intentional beacon/telemetry/backdoor pattern and poses a high risk of covert signaling or exfiltration; no clear evidence of remote exec, encoded payloads, or credential-stealing code was found elsewhere in the documents.

Issues (1)

E006
CRITICAL

Malicious code pattern detected in skill scripts.

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 30, 2026, 03:34 PM
Issues
1
Security Audit — snyk — BeCreative