registry  /  @cotal-ai/connector-hermes  /  0.9.0

@cotal-ai/connector-hermes@0.9.0

Cotal connector for the Hermes (Nous Research) agent.

Static Scan Results

scanned 3d ago · by rust-scanner

Static analysis flagged 13 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 10 file(s), 1.27 MB of source, external domains: broker.cotal.ai, cotal.ai, hermes-agent.nousresearch.com, json-schema.org

Source & flagged code

5 flagged · loading source
bin/install.mjsView file
21*/ L22: import { execFileSync } from "node:child_process"; L23: import {
High
Child Process

Package source references child process execution.

bin/install.mjsView on unpkg · L21
21Manifest entrypoint (manifest.bin) carries capability families absent from dist/build output: environment+network, sensitive-file+network, execution+network L21: */ L22: import { execFileSync } from "node:child_process"; L23: import { ... L31: } from "node:fs"; L32: import { createConnection } from "node:net"; L33: import { homedir, tmpdir } from "node:os"; ... L47: const die = (msg) => { L48: process.stderr.write(`✗ ${msg}\n`); L49: process.exit(1); ... L119: function configFromFlags(flags, defaults) { L120: const link = flags.link || process.env.COTAL_LINK; L121: if (link) return { COTAL_LINK: link, COTAL_NAME: flags.name || process.env.COTAL_NAME || defaults.name };
High
Entrypoint Build Divergence

Manifest entrypoint contains risky behavior absent from dist/build output.

bin/install.mjsView on unpkg · L21
21Cross-file remote execution chain: bin/install.mjs spawns plugin/cotal/_sidecar/standalone.cjs; helper contains network access plus dynamic code execution. L21: */ L22: import { execFileSync } from "node:child_process"; L23: import { ... L31: } from "node:fs"; L32: import { createConnection } from "node:net"; L33: import { homedir, tmpdir } from "node:os"; ... L47: const die = (msg) => { L48: process.stderr.write(`✗ ${msg}\n`); L49: process.exit(1); ... L119: function configFromFlags(flags, defaults) { L120: const link = flags.link || process.env.COTAL_LINK; L121: if (link) return { COTAL_LINK: link, COTAL_NAME: flags.name || process.env.COTAL_NAME || defaults.name };
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

bin/install.mjsView on unpkg · L21
plugin/cotal/_sidecar/standalone.cjsView file
7var __hasOwnProp = Object.prototype.hasOwnProperty; L8: var __commonJS = (cb, mod) => function __require() { L9: return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
Medium
Dynamic Require

Package source references dynamic require/import behavior.

plugin/cotal/_sidecar/standalone.cjsView on unpkg · L7
plugin/cotal/hooks.pyView file
path = plugin/cotal/hooks.py kind = build_helper sizeBytes = 2717 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

plugin/cotal/hooks.pyView on unpkg

Findings

4 High5 Medium4 Low
HighChild Processbin/install.mjs
HighShell
HighEntrypoint Build Divergencebin/install.mjs
HighCross File Remote Execution Contextbin/install.mjs
MediumDynamic Requireplugin/cotal/_sidecar/standalone.cjs
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperplugin/cotal/hooks.py
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings