saccoai-client-portal

SUSPICIOUS. The core portal-generation behavior is coherent with the stated purpose, especially in static mode, but deployed mode materially expands scope: it handles raw secrets, deploys infrastructure, stores client feedback in Upstash, sends email through Resend, and triggers downstream cleanup actions. These behaviors are not inherently malicious and mostly use official services, but the credential handling and third-party data flows make the enterprise path medium risk.