registry  /  @aexol/spectral  /  0.9.78

@aexol/spectral@0.9.78

⚠ Under review

AI coding agent for Aexol with relay-based browser access.

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 16 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 366 file(s), 3.78 MB of source, external domains: aexol.ai, aexol.com, ai-gateway.vercel.sh, api.aexol.ai, api.anthropic.com, api.cerebras.ai, api.cloudflare.com, api.deepseek.com, api.fireworks.ai, api.github.com, api.groq.com, api.individual.githubcopilot.com, api.kimi.com, api.minimax.io, api.minimaxi.com, api.mistral.ai, api.moonshot.ai, api.moonshot.cn, api.openai.com, api.together.ai, api.x.ai, api.xiaomimimo.com, api.z.ai, auth.openai.com, bedrock-runtime.eu-central-1.amazonaws.com, bedrock-runtime.us-east-1.amazonaws.com, chatgpt.com, claude.ai, example.com, gateway.ai.cloudflare.com, generativelanguage.googleapis.com, git-scm.com, github.com, json-schema.org, opencode.ai, openrouter.ai, platform.claude.com, proxy.example.com, router.huggingface.co, schema.org, spectral.dev, token-plan-ams.xiaomimimo.com, token-plan-cn.xiaomimimo.com, token-plan-sgp.xiaomimimo.com, www.google.com, www.sitemaps.org, www.w3.org

Source & flagged code

8 flagged · loading source
dist/server/sqlite-adapter.jsView file
42} L43: exec(sql) { L44: this.db.exec(sql);
High
Child Process

Package source references child process execution.

dist/server/sqlite-adapter.jsView on unpkg · L42
dist/server/handlers/paths-pick-directory.jsView file
87`.trim(); L88: // -EncodedCommand (UTF-16LE base64) avoids cmd.exe quote-escaping bugs L89: // that would corrupt -Command strings containing nested double-quotes.
High
Shell

Package source references shell execution.

dist/server/handlers/paths-pick-directory.jsView on unpkg · L87
dist/extensions/browser/tools/evaluate.jsView file
73// Create an async function from the code string with page in scope L74: const fn = new Function("page", `return (async () => { ${code} })()`); L75: const result = await fn(page);
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/extensions/browser/tools/evaluate.jsView on unpkg · L73
dist/mcp/glimpse-ui.jsView file
24try { L25: const require = createRequire(import.meta.url); L26: const glimpseuiPath = require.resolve("glimpseui");
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/mcp/glimpse-ui.jsView on unpkg · L24
dist/auth-helper.jsView file
12*/ L13: import { createServer } from "node:http"; L14: import { exec } from "node:child_process"; L15: import pc from "picocolors"; ... L27: function deriveLandingUrl(backendUrl) { L28: const env = process.env.SPECTRAL_LANDING_URL; L29: if (env)
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/auth-helper.jsView on unpkg · L12
dist/extensions/web/utils/fetcher.jsView file
6*/ L7: import { lookup } from "node:dns/promises"; L8: import { isIP } from "node:net"; ... L17: const MAX_REDIRECTS = 10; L18: /** Private/loopback IPv4 CIDR prefixes. */ L19: const PRIVATE_IPV4_PREFIXES = [ ... L114: const charset = match[1].toLowerCase().trim().replace(/^["']|["']$/g, ""); L115: // Only return charsets TextDecoder is likely to support. L116: if (["utf-8", "utf8", "iso-8859-1", "windows-1252", "ascii", "us-ascii"].includes(charset)) {
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

dist/extensions/web/utils/fetcher.jsView on unpkg · L6
dist/relay/auto-optimizer.jsView file
215try { L216: execSync("npx tsc --noEmit", { L217: cwd: projectPath,
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/relay/auto-optimizer.jsView on unpkg · L215
dist/relay/dispatcher.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @aexol/spectral@0.9.61 matchedIdentity = npm:QGFleG9sL3NwZWN0cmFs:0.9.61 similarity = 0.892 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/relay/dispatcher.jsView on unpkg

Findings

1 Critical5 High4 Medium6 Low
CriticalPrevious Version Dangerous Deltadist/relay/dispatcher.js
HighChild Processdist/server/sqlite-adapter.js
HighShelldist/server/handlers/paths-pick-directory.js
HighSame File Env Network Executiondist/auth-helper.js
HighCloud Metadata Accessdist/extensions/web/utils/fetcher.js
HighRuntime Package Installdist/relay/auto-optimizer.js
MediumDynamic Requiredist/mcp/glimpse-ui.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/extensions/browser/tools/evaluate.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings