registry  /  @bubblebrain-ai/bubble  /  0.0.31

@bubblebrain-ai/bubble@0.0.31

A terminal coding agent

Static Scan Results

scanned 11d ago · by rust-scanner

Static analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicense
scanned 274 file(s), 1.79 MB of source, external domains: 127.0.0.1, api.anthropic.com, api.deepseek.com, api.fireworks.ai, api.groq.com, api.kimi.com, api.minimaxi.com, api.moonshot.ai, api.moonshot.cn, api.openai.com, api.stepfun.com, api.together.xyz, api.z.ai, ark.cn-beijing.volces.com, auth.openai.com, bubble-feedback.chengshengdeng97.workers.dev, bun.sh, chatgpt.com, dashscope.aliyuncs.com, generativelanguage.googleapis.com, mcp.exa.ai, open.bigmodel.cn, openrouter.ai, registry.npmjs.org, system-proxy-default.invalid

Source & flagged code

4 flagged · loading source
dist/tui-ink/image-paste.jsView file
9*/ L10: import { execFile } from "node:child_process"; L11: import fs from "node:fs/promises";
High
Child Process

Package source references child process execution.

dist/tui-ink/image-paste.jsView on unpkg · L9
313try { L314: const result = await execFileAsync("powershell", ["-NoProfile", "-Command", script], { timeout: 5000 }); L315: if (!String(result.stdout).includes("OK"))
High
Shell

Package source references shell execution.

dist/tui-ink/image-paste.jsView on unpkg · L313
dist/tools/server-manager.jsView file
25} L26: const shell = platform() === "win32" ? "cmd.exe" : "bash"; L27: const shellArgs = platform() === "win32" ? ["/c", command] : ["-c", command]; ... L30: stdio: ["ignore", "pipe", "pipe"], L31: env: process.env, L32: detached: platform() !== "win32", ... L39: const id = `server_${String(nextServerId++).padStart(4, "0")}`; L40: const readinessUrl = input.readinessUrl ?? (input.port ? `http://localhost:${input.port}` : undefined); L41: const record = {
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/tools/server-manager.jsView on unpkg · L25
dist/oauth/openai-codex.jsView file
3*/ L4: import { createServer } from "node:http"; L5: import { exec } from "node:child_process"; L6: import { randomBytes, createHash } from "node:crypto"; ... L13: function generatePKCE() { L14: const codeVerifier = randomBytes(32).toString("base64url"); L15: const codeChallenge = createHash("sha256").update(codeVerifier).digest("base64url"); ... L21: function openBrowser(url) { L22: const cmd = process.platform === "darwin" ? "open" : process.platform === "win32" ? "start" : "xdg-open"; L23: exec(`${cmd} ${JSON.stringify(url)}`, () => { ... L40: res.writeHead(400, { "Content-Type": "text/html" }); L41: res.end(`<html><body><h1>Authorization failed</h1><p>${errorDesc || error}</p></body></html>`);
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/oauth/openai-codex.jsView on unpkg · L3

Findings

4 High3 Medium5 Low
HighChild Processdist/tui-ink/image-paste.js
HighShelldist/tui-ink/image-paste.js
HighSame File Env Network Executiondist/tools/server-manager.js
HighSandbox Evasion Gated Capabilitydist/oauth/openai-codex.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License