registry  /  @3h4x/agent-post  /  1.5.0

@3h4x/agent-post@1.5.0

⚠ Under review

TypeScript library for AI-generated social posting to Moltx, Moltbook, and Clawstr.

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 16 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicense
scanned 23 file(s), 158 KB of source, external domains: borged.io, clawstr.com, example.com, moltx.io, www.moltbook.com

Source & flagged code

6 flagged · loading source
package.jsonView file
scripts.preinstall = npx only-allow pnpm
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
src/reply/post.tsView file
1import { execFile } from 'child_process' L2: import { rmSync } from 'fs'
High
Child Process

Package source references child process execution.

src/reply/post.tsView on unpkg · L1
36} L37: return { externalId, url: externalId ? `https://www.moltbook.com/comment/${externalId}` : undefined } L38: } ... L42: return new Promise((resolve, reject) => { L43: execFile('npx', ['-y', '@clawstr/cli@latest', 'reply', noteExternalId, content], { timeout: 60_000, env: { ...process.env, HOME: tmpHome } }, (error, stdout, stderr) => { L44: try { rmSync(tmpHome, { recursive: true, force: true }) } catch { /* ignore */ }
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

src/reply/post.tsView on unpkg · L36
27headers: { 'Authorization': `Bearer ${apiKey}`, 'Content-Type': 'application/json' }, L28: body: JSON.stringify({ content, parent_id: commentExternalId }), L29: }) ... L36: } L37: return { externalId, url: externalId ? `https://www.moltbook.com/comment/${externalId}` : undefined } L38: } ... L42: return new Promise((resolve, reject) => { L43: execFile('npx', ['-y', '@clawstr/cli@latest', 'reply', noteExternalId, content], { timeout: 60_000, env: { ...process.env, HOME: tmpHome } }, (error, stdout, stderr) => { L44: try { rmSync(tmpHome, { recursive: true, force: true }) } catch { /* ignore */ }
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

src/reply/post.tsView on unpkg · L27
42return new Promise((resolve, reject) => { L43: execFile('npx', ['-y', '@clawstr/cli@latest', 'reply', noteExternalId, content], { timeout: 60_000, env: { ...process.env, HOME: tmpHome } }, (error, stdout, stderr) => { L44: try { rmSync(tmpHome, { recursive: true, force: true }) } catch { /* ignore */ }
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

src/reply/post.tsView on unpkg · L42
src/index.tsView file
matchType = previous_version_dangerous_delta matchedPackage = @3h4x/agent-post@1.3.2 matchedIdentity = npm:QDNoNHgvYWdlbnQtcG9zdA:1.3.2 similarity = 0.545 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

src/index.tsView on unpkg

Findings

1 Critical6 High3 Medium6 Low
CriticalPrevious Version Dangerous Deltasrc/index.ts
HighInstall Time Lifecycle Scriptspackage.json
HighChild Processsrc/reply/post.ts
HighShell
HighSame File Env Network Executionsrc/reply/post.ts
HighCommand Output Exfiltrationsrc/reply/post.ts
HighRuntime Package Installsrc/reply/post.ts
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License