registry  /  @agent-native/core  /  0.101.3

@agent-native/core@0.101.3

Framework for agent-native application development — where AI agents and UI share SQL state, actions, and context

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 39 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNativeBindingsNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 5,017 file(s), 46.0 MB of source, external domains: 127.0.0.1, accounts.google.com, agent-native-artifact.invalid, agent-native.com, agent-native.invalid, agent-native.local, aistudio.google.com, amplitude.com, an.invalid, analytics.agent-native.com, analytics.example.com, analytics.local, analyticsdata.googleapis.com, api.anthropic.com, api.apollo.io, api.botframework.com, api.brandfetch.io, api.builder.io, api.clay.com, api.commonroom.io, api.dataforseo.com, api.exa.ai, api.example.com, api.figma.com, api.firecrawl.dev, api.github.com, api.gong.io, api.groq.com, api.hubapi.com, api.logo.dev, api.mixpanel.com, api.notion.com, api.openai.com, api.resend.com, api.search.brave.com, api.sendgrid.com, api.slack.com, api.stripe.com, api.tavily.com, api.telegram.org, api.twitterapi.io, api.usepylon.com, api.zoom.us, api2.amplitude.com, apis.google.com, app.apollo.io, app.gong.io, app.posthog.com, app.sendgrid.com, assets.agent-native.com

Source & flagged code

31 flagged · loading source
dist/server/onboarding-html.jsView file
69patternName = generic_password severity = medium line = 69 matchedText = password...rd",
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/server/onboarding-html.jsView on unpkg · L69
329patternName = generic_password severity = medium line = 329 matchedText = password...ña",
Medium
Secret Pattern

Hardcoded password in dist/server/onboarding-html.js

dist/server/onboarding-html.jsView on unpkg · L329
415patternName = generic_password severity = medium line = 415 matchedText = password...se",
Medium
Secret Pattern

Hardcoded password in dist/server/onboarding-html.js

dist/server/onboarding-html.jsView on unpkg · L415
501patternName = generic_password severity = medium line = 501 matchedText = password...rt",
Medium
Secret Pattern

Hardcoded password in dist/server/onboarding-html.js

dist/server/onboarding-html.jsView on unpkg · L501
931patternName = generic_password severity = medium line = 931 matchedText = password...ور",
Medium
Secret Pattern

Hardcoded password in dist/server/onboarding-html.js

dist/server/onboarding-html.jsView on unpkg · L931
bin/agent-native.jsView file
2L3: import { spawn } from "node:child_process"; L4: import { existsSync, statSync } from "node:fs";
High
Child Process

Package source references child process execution.

bin/agent-native.jsView on unpkg · L2
34if (!shouldUseSourceFallback() && existsSync(distEntry)) { L35: await import(pathToFileURL(distEntry).href); L36: } else {
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/agent-native.jsView on unpkg · L34
dist/coding-tools/index.jsView file
307cwd, L308: shell: true, L309: stdio: ["pipe", "pipe", "pipe"],
High
Shell

Package source references shell execution.

dist/coding-tools/index.jsView on unpkg · L307
dist/server/prompts/framework-core.jsView file
35const securityRule = hasDatabaseWrites L36: ? "7. **Security** — Always use `defineAction` with a Zod `schema:` for input validation. Never construct SQL with string concatenation — use parameterized queries via db-query/db-... L37: : hasDatabaseTools
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/server/prompts/framework-core.jsView on unpkg · L35
dist/cli/migrate.jsView file
6const __filename = fileURLToPath(import.meta.url); L7: const __dirname = path.dirname(__filename); L8: const DEFAULT_APP_NAME = "migration"; ... L21: "COHERE_API_KEY", L22: "BUILDER_PRIVATE_KEY", L23: ]; ... L291: cwd, L292: metadata: { L293: source, ... L437: ` App: ${appDir}`, L438: ` URL: http://localhost:${MIGRATION_DEV_PORT}/`, L439: "",
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/cli/migrate.jsView on unpkg · L6
dist/terminal/pty-server.jsView file
84} L85: export async function createPtyWebSocketServer(options = {}) { L86: const { appDir = process.cwd(), command: defaultCommand = "claude", port = 0, authCheck, logPrefix = "[terminal]", } = options; ... L90: const resolvedAppDir = path.resolve(appDir); L91: const shell = os.platform() === "win32" ? "cmd.exe" : process.env.SHELL || "/bin/zsh"; L92: const server = createHttpServer((req, res) => {
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/terminal/pty-server.jsView on unpkg · L84
corpus/templates/slides/actions/search-logos.tsView file
15L16: const secretKey = process.env.LOGO_DEV_SECRET_KEY; L17: ... L20: try { L21: const response = await fetch( L22: `https://api.logo.dev/search?q=${encodeURIComponent(q)}`, ... L27: const results: Array<{ name: string; domain: string }> = L28: await response.json(); L29: return results.map((r) => ({ name: r.name, domain: r.domain }));
High
Credential Exfiltration

Source combines credential-like environment material and outbound requests; review data flow before blocking.

corpus/templates/slides/actions/search-logos.tsView on unpkg · L15
dist/server/design-token-utils.jsView file
3* L4: * Pure functions for parsing Tailwind configs, CSS files, package.json, L5: * documents, and URLs to extract colors, fonts, spacing, border-radius, ... L129: throw new Error("Could not parse GitHub owner/repo from URL. " + L130: 'Expected format: "https://github.com/org/repo", "org/repo", or "git@github.com:org/repo.git"'); L131: } ... L150: try { L151: const body = (await res.json()); L152: if (typeof body.message === "string") ... L164: } L165: return { ok: false, status: res.status, data: null, message }; L166: }
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

dist/server/design-token-utils.jsView on unpkg · L3
dist/server/action-discovery.jsView file
201package = @agent-native/core; repositoryIdentity = agent-native; dependency = jiti L201: throw err; L202: const { createJiti } = await import("jiti"); L203: const jiti = createJiti(pathToFileURL(filePath).href, {
High
Copied Package Dependency Bridge

Package metadata claims a different repository identity while copied source loads a runtime dependency bridge.

dist/server/action-discovery.jsView on unpkg · L201
dist/cli/index.jsView file
1Cross-file remote execution chain: dist/cli/index.js spawns dist/deploy/build.js; helper contains network access plus dynamic code execution. L1: #!/usr/bin/env node L2: import { execSync, spawn } from "child_process"; L3: import fs from "fs"; ... L11: try { L12: const __dirname = path.dirname(fileURLToPath(import.meta.url)); L13: // dist/cli/index.js → ../../package.json L14: const pkg = JSON.parse(fs.readFileSync(path.resolve(__dirname, "../../package.json"), "utf-8")); L15: _version = pkg.version; ... L26: console.error(`agent-native requires Node.js ${REQUIRED_NODE_MAJOR} or newer, but you're on Node ${process.versions.node}.\n` + L27: `Upgrade Node (https://nodejs.org) and re-run. With nvm: \`nvm install ${REQUIRED_NODE_MAJOR}\`.`); L28: process.exit(1); ... L113: }
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dist/cli/index.jsView on unpkg · L1
corpus/core/src/server/onboarding-html.tsView file
92patternName = generic_password severity = medium line = 92 matchedText = password...rd",
Medium
Secret Pattern

Hardcoded password in corpus/core/src/server/onboarding-html.ts

corpus/core/src/server/onboarding-html.tsView on unpkg · L92
366patternName = generic_password severity = medium line = 366 matchedText = password...ña",
Medium
Secret Pattern

Hardcoded password in corpus/core/src/server/onboarding-html.ts

corpus/core/src/server/onboarding-html.tsView on unpkg · L366
463patternName = generic_password severity = medium line = 463 matchedText = password...se",
Medium
Secret Pattern

Hardcoded password in corpus/core/src/server/onboarding-html.ts

corpus/core/src/server/onboarding-html.tsView on unpkg · L463
561patternName = generic_password severity = medium line = 561 matchedText = password...rt",
Medium
Secret Pattern

Hardcoded password in corpus/core/src/server/onboarding-html.ts

corpus/core/src/server/onboarding-html.tsView on unpkg · L561
1036patternName = generic_password severity = medium line = 1036 matchedText = password...ور",
Medium
Secret Pattern

Hardcoded password in corpus/core/src/server/onboarding-html.ts

corpus/core/src/server/onboarding-html.tsView on unpkg · L1036
corpus/templates/clips/app/i18n/fr-FR.tsView file
1400patternName = generic_password severity = medium line = 1400 matchedText = password...se",
Medium
Secret Pattern

Hardcoded password in corpus/templates/clips/app/i18n/fr-FR.ts

corpus/templates/clips/app/i18n/fr-FR.tsView on unpkg · L1400
corpus/templates/clips/app/i18n/ar-SA.tsView file
1377patternName = generic_password severity = medium line = 1377 matchedText = password...ور",
Medium
Secret Pattern

Hardcoded password in corpus/templates/clips/app/i18n/ar-SA.ts

corpus/templates/clips/app/i18n/ar-SA.tsView on unpkg · L1377
corpus/templates/clips/app/i18n/de-DE.tsView file
1405patternName = generic_password severity = medium line = 1405 matchedText = password...rt",
Medium
Secret Pattern

Hardcoded password in corpus/templates/clips/app/i18n/de-DE.ts

corpus/templates/clips/app/i18n/de-DE.tsView on unpkg · L1405
corpus/templates/clips/app/i18n/en-US.tsView file
1366patternName = generic_password severity = medium line = 1366 matchedText = password...rd",
Medium
Secret Pattern

Hardcoded password in corpus/templates/clips/app/i18n/en-US.ts

corpus/templates/clips/app/i18n/en-US.tsView on unpkg · L1366
corpus/templates/clips/app/i18n/es-ES.tsView file
1398patternName = generic_password severity = medium line = 1398 matchedText = password...ña",
Medium
Secret Pattern

Hardcoded password in corpus/templates/clips/app/i18n/es-ES.ts

corpus/templates/clips/app/i18n/es-ES.tsView on unpkg · L1398
corpus/templates/plan/app/i18n/fr-FR.tsView file
472patternName = generic_password severity = medium line = 472 matchedText = password...se",
Medium
Secret Pattern

Hardcoded password in corpus/templates/plan/app/i18n/fr-FR.ts

corpus/templates/plan/app/i18n/fr-FR.tsView on unpkg · L472
corpus/templates/plan/app/i18n/ar-SA.tsView file
649patternName = generic_password severity = medium line = 649 matchedText = password...ور",
Medium
Secret Pattern

Hardcoded password in corpus/templates/plan/app/i18n/ar-SA.ts

corpus/templates/plan/app/i18n/ar-SA.tsView on unpkg · L649
corpus/templates/plan/app/i18n/de-DE.tsView file
661patternName = generic_password severity = medium line = 661 matchedText = password...rt",
Medium
Secret Pattern

Hardcoded password in corpus/templates/plan/app/i18n/de-DE.ts

corpus/templates/plan/app/i18n/de-DE.tsView on unpkg · L661
corpus/templates/plan/app/i18n/en-US.tsView file
638patternName = generic_password severity = medium line = 638 matchedText = password...rd",
Medium
Secret Pattern

Hardcoded password in corpus/templates/plan/app/i18n/en-US.ts

corpus/templates/plan/app/i18n/en-US.tsView on unpkg · L638
corpus/templates/plan/app/i18n/es-ES.tsView file
470patternName = generic_password severity = medium line = 470 matchedText = password...ña",
Medium
Secret Pattern

Hardcoded password in corpus/templates/plan/app/i18n/es-ES.ts

corpus/templates/plan/app/i18n/es-ES.tsView on unpkg · L470
corpus/templates/analytics/server/lib/demo-source.tsView file
28patternName = generic_password severity = medium line = 28 matchedText = password...RD",
Medium
Secret Pattern

Hardcoded password in corpus/templates/analytics/server/lib/demo-source.ts

corpus/templates/analytics/server/lib/demo-source.tsView on unpkg · L28

Findings

7 High25 Medium7 Low
HighChild Processbin/agent-native.js
HighShelldist/coding-tools/index.js
HighSame File Env Network Executiondist/terminal/pty-server.js
HighCredential Exfiltrationcorpus/templates/slides/actions/search-logos.ts
HighCloud Metadata Accessdist/server/design-token-utils.js
HighCopied Package Dependency Bridgedist/server/action-discovery.js
HighCross File Remote Execution Contextdist/cli/index.js
MediumSecret Patterndist/server/onboarding-html.js
MediumDynamic Requirebin/agent-native.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
MediumSecret Patterndist/server/onboarding-html.js
MediumSecret Patterndist/server/onboarding-html.js
MediumSecret Patterndist/server/onboarding-html.js
MediumSecret Patterndist/server/onboarding-html.js
MediumSecret Patterncorpus/core/src/server/onboarding-html.ts
MediumSecret Patterncorpus/core/src/server/onboarding-html.ts
MediumSecret Patterncorpus/core/src/server/onboarding-html.ts
MediumSecret Patterncorpus/core/src/server/onboarding-html.ts
MediumSecret Patterncorpus/core/src/server/onboarding-html.ts
MediumSecret Patterncorpus/templates/clips/app/i18n/fr-FR.ts
MediumSecret Patterncorpus/templates/clips/app/i18n/ar-SA.ts
MediumSecret Patterncorpus/templates/clips/app/i18n/de-DE.ts
MediumSecret Patterncorpus/templates/clips/app/i18n/en-US.ts
MediumSecret Patterncorpus/templates/clips/app/i18n/es-ES.ts
MediumSecret Patterncorpus/templates/plan/app/i18n/fr-FR.ts
MediumSecret Patterncorpus/templates/plan/app/i18n/ar-SA.ts
MediumSecret Patterncorpus/templates/plan/app/i18n/de-DE.ts
MediumSecret Patterncorpus/templates/plan/app/i18n/en-US.ts
MediumSecret Patterncorpus/templates/plan/app/i18n/es-ES.ts
MediumSecret Patterncorpus/templates/analytics/server/lib/demo-source.ts
LowScripts Present
LowEvaldist/server/prompts/framework-core.js
LowWeak Cryptodist/cli/migrate.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings