First Seen
Feb 18, 2026
Last Scanned
Feb 22, 2026
Findings
3
Score
77/100
Findings (3)
Detects CLI tools that upload project context, code, or knowledge to external services
Push local context tree changes to ByteRover cloudBlock the ability to package multiple files into archives (zip, tar) and transmit them. If archiving is needed, restrict it to specific directories and require user confirmation.
Likely FP if the skill is a backup or deployment tool where creating and transmitting archives is the documented core functionality.
Detects CLI tools that upload project context, code, or knowledge to external services
curate "Authentication middleware validates JWT tokens" --fileBlock the ability to package multiple files into archives (zip, tar) and transmit them. If archiving is needed, restrict it to specific directories and require user confirmation.
Likely FP if the skill is a backup or deployment tool where creating and transmitting archives is the documented core functionality.
Detects MCP server configurations connecting to non-localhost remote URLs
"url": "https://app.byterover.com/team/space"Change the MCP server URL to localhost or a trusted internal endpoint. If a remote server is required, verify the domain ownership and use HTTPS with certificate validation.
Likely FP if the URL points to example.com, a documentation domain, or a well-known SaaS API endpoint (e.g., api.openai.com).