BeCreative
Fail
Audited by Snyk on Jun 30, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E006: Malicious code pattern detected in skill scripts.
- Malicious code pattern detected (high risk: 0.90). The skill contains repeated, mandatory, backgrounded HTTP POSTs to localhost:31337 (silenced via >/dev/null 2>&1 &) that run "before any action", which appears to be an intentional beacon/telemetry/backdoor pattern and poses a high risk of covert signaling or exfiltration; no clear evidence of remote exec, encoded payloads, or credential-stealing code was found elsewhere in the documents.
Issues (1)
E006
CRITICALMalicious code pattern detected in skill scripts.
Audit Metadata