registry  /  @chachamaru127/harness-mem  /  0.29.1

@chachamaru127/harness-mem@0.29.1

Memory bridge for Claude Code and Codex — local-first, zero-cost coding memory runtime

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 21 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsMinifiedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 489 file(s), 6.47 MB of source, external domains: 10.0.0.1, 127.0.0.1, 169.254.169.254, 172.16.0.1, 192.168.1.1, 192.168.1.100, api-inference.huggingface.co, api.anthropic.com, api.cohere.com, api.example.com, api.github.com, api.notion.com, api.openai.com, claude-harness.com, collector.test, drive.google.com, example.com, example.test, generativelanguage.googleapis.com, gitforwindows.org, github.com, harness-mem.local, huggingface.co, json-schema.org, managed.example.com, notion.so, ollama.example.com, raw.githubusercontent.com, react.dev, spec.openapis.org, stackoverflow.com, tools.ietf.org, vps.example.com, www.googleapis.com, www.safaribooksonline.com, www.w3.org

Source & flagged code

13 flagged · loading source
scripts/deploy.shView file
55patternName = generic_password severity = medium line = 55 matchedText = db_passw...en)"
Medium
Secret Pattern

Package contains a possible secret pattern.

scripts/deploy.shView on unpkg · L55
mcp-server/dist/index.jsView file
14625import * as path from "path"; L14626: import { exec } from "child_process"; L14627: import { promisify } from "util";
High
Child Process

Package source references child process execution.

mcp-server/dist/index.jsView on unpkg · L14625
14825try { L14826: const { stdout } = await execAsync("git diff --name-only HEAD~1", { L14827: cwd,
High
Shell

Package source references shell execution.

mcp-server/dist/index.jsView on unpkg · L14825
16338import * as path4 from "path"; L16339: import { execFile as execFile2 } from "child_process"; L16340: import { promisify as promisify3 } from "util"; L16341: function isRemoteMode() { L16342: return !!(process.env.HARNESS_MEM_REMOTE_URL || "").trim(); L16343: } ... L16350: const port = process.env.HARNESS_MEM_PORT || "37888"; L16351: return `http://${host}:${port}`; L16352: }
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

mcp-server/dist/index.jsView on unpkg · L16338
14611const json = serializeMessage(message); L14612: if (this._stdout.write(json)) { L14613: resolve4(); L14614: } else { ... L14625: import * as path from "path"; L14626: import { exec } from "child_process"; L14627: import { promisify } from "util";
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

mcp-server/dist/index.jsView on unpkg · L14611
9852sourceCode = this.opts.code.process(sourceCode, sch); L9853: const makeValidate = new Function(`${names_1.default.self}`, `${names_1.default.scope}`, sourceCode); L9854: const validate = makeValidate(this, this.scope.get());
Low
Eval

Package source references a known benign dynamic code generation pattern.

mcp-server/dist/index.jsView on unpkg · L9852
scripts/harness-mem.jsView file
2L3: const { runBashEntry } = require("./lib/bash-entry"); L4:
Medium
Dynamic Require

Package source references dynamic require/import behavior.

scripts/harness-mem.jsView on unpkg · L2
memory-server/src/system-environment/collector.tsView file
80exit_code: number; L81: stdout: string; L82: stderr: string; ... L112: if (inputPath.startsWith("~")) { L113: const homeDir = process.env.HOME || process.env.USERPROFILE || "."; L114: return `${homeDir}${inputPath.slice(1)}`; ... L165: exit_code: result.exitCode ?? 1, L166: stdout: Buffer.from(result.stdout).toString("utf8").trim(), L167: stderr: Buffer.from(result.stderr).toString("utf8").trim(), ... L405: "1", L406: `http://${input.mem_host}:${input.ui_port}/api/context`, L407: ]);
Low
Weak Crypto

Package source references weak cryptographic algorithms.

memory-server/src/system-environment/collector.tsView on unpkg · L80
scripts/lib/bash-entry.jsView file
1const { spawnSync } = require("child_process"); L2: const path = require("path"); ... L6: L7: function effectivePlatform(env = process.env) { L8: return env.HARNESS_MEM_FORCE_PLATFORM || process.platform; L9: } ... L16: "Recommended solutions:", L17: " 1. Install Git for Windows (https://gitforwindows.org/) — it includes Git Bash", L18: " 2. Run harness-mem from Git Bash terminal", ... L68: function readSpawnOutput(result) { L69: return [result.stdout, result.stderr] L70: .filter(Boolean)
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

scripts/lib/bash-entry.jsView on unpkg · L1
bin/harness-mcp-darwin-amd64View file
path = bin/harness-mcp-darwin-amd64 kind = native_binary sizeBytes = 8707552 magicHex = [redacted]
Medium
Ships Native Binary

Package ships native binary artifacts.

bin/harness-mcp-darwin-amd64View on unpkg
.cursor/hooks/memory-cursor-event.shView file
path = .cursor/hooks/memory-cursor-event.sh kind = payload_in_excluded_dir sizeBytes = 506 magicHex = [redacted]
High
Payload In Excluded Dir

Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.

.cursor/hooks/memory-cursor-event.shView on unpkg
path = .cursor/hooks/memory-cursor-event.sh kind = build_helper sizeBytes = 506 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

.cursor/hooks/memory-cursor-event.shView on unpkg
memory-server/tests/unit/current-state-summary.test.tsView file
23patternName = private_key_rsa severity = critical line = 23 matchedText = text: "-...--",
Critical
Secret Pattern

RSA private key in memory-server/tests/unit/current-state-summary.test.ts

memory-server/tests/unit/current-state-summary.test.tsView on unpkg · L23

Findings

1 Critical6 High7 Medium7 Low
CriticalSecret Patternmemory-server/tests/unit/current-state-summary.test.ts
HighChild Processmcp-server/dist/index.js
HighShellmcp-server/dist/index.js
HighSame File Env Network Executionmcp-server/dist/index.js
HighCommand Output Exfiltrationmcp-server/dist/index.js
HighSandbox Evasion Gated Capabilityscripts/lib/bash-entry.js
HighPayload In Excluded Dir.cursor/hooks/memory-cursor-event.sh
MediumSecret Patternscripts/deploy.sh
MediumDynamic Requirescripts/harness-mem.js
MediumNetwork
MediumEnvironment Vars
MediumShips Native Binarybin/harness-mcp-darwin-amd64
MediumShips Build Helper.cursor/hooks/memory-cursor-event.sh
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvalmcp-server/dist/index.js
LowWeak Cryptomemory-server/src/system-environment/collector.ts
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings