r2
Warn
Audited by Socket on Feb 20, 2026
1 alert found:
AnomalyAnomalyscripts/delete.sh
LOWAnomalyLOW
scripts/delete.sh
This script is not malicious: it is a utility that issues destructive rclone delete/rmdir operations against an R2 remote bucket. The primary security concern is legitimate but destructive functionality — accidental or misconfigured use can irreversibly delete data. There are no signs of backdoors, data exfiltration, or obfuscation. Recommend exercising caution: verify BUCKET value, avoid running in non-interactive environments without additional safeguards, and consider adding dry-run, logging, or stricter confirmation checks.
Confidence: 90%Severity: 60%
Audit Metadata