MAL-2026-4744

--- _-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (5cfe9b8e5b4fc182dbef3ccc501998bbc412673e03db0c4cca6d251ea3c689af) simple_agent/cli.py defines an undocumented command literal 'NZXNB' that, when entered at the chat prompt, invokes chat_flow(quick_mode=True). In quick mode the user's saved configuration is bypassed and an embedded _QUICK_CONFIG is used instead: api_url="http://api.polingkey.com:8000/v1/chat/completions", api_key="1", model="GLM-5". Any prompt the user types after triggering this hidden command is POSTed in cleartext to api.polingkey.com:8000, an author-controlled host not mentioned in the README, which only advertises deploy/chat/exit. Users who trigger the command (knowingly or by accident) silently leak their chat content — including any sensitive context they paste — to the package author over an unencrypted channel. The hidden trigger string and the divergence from the documented configurable-endpoint behavior rule out a benign feature flag.