registry  /  @deeplake/hivemind  /  0.7.119

@deeplake/hivemind@0.7.119

⚠ Under review

Cloud-backed persistent shared memory for AI agents powered by Deeplake

Static Scan Results

scanned 5d ago · by rust-scanner

Static analysis flagged 22 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicense
scanned 58 file(s), 5.13 MB of source, external domains: 127.0.0.1, api.deeplake.ai, app.deeplake.ai, claude.com, deeplake.ai, gist.github.com, github.com, json-schema.org, mathiasbynens.be, raw.githubusercontent.com, registry.npmjs.org, spec.openapis.org, stackoverflow.com, tools.ietf.org, unpkg.com, www.w3.org
Oversized source lightweight scan
harnesses/codex/bundle/shell/deeplake-shell.js2.93 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsCryptoShellDynamicRequireHighEntropyStringsUrlStringsgithub.com
harnesses/cursor/bundle/shell/deeplake-shell.js2.93 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsCryptoShellDynamicRequireHighEntropyStringsUrlStringsgithub.com
harnesses/hermes/bundle/shell/deeplake-shell.js2.93 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsCryptoShellDynamicRequireHighEntropyStringsUrlStringsgithub.com

Source & flagged code

13 flagged · loading source
package.jsonView file
scripts.postinstall = node scripts/ensure-tree-sitter.mjs
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
harnesses/openclaw/dist/graph-pull-worker.jsView file
1069try { L1070: const raw = execSync("git config --get remote.origin.url", { L1071: cwd: absCwd,
High
Child Process

Package source references child process execution.

harnesses/openclaw/dist/graph-pull-worker.jsView on unpkg · L1069
36try { L37: const raw = JSON.parse(readFileSync4(markerPath, "utf-8")); L38: const updatedAt = raw.updatedAt ? new Date(raw.updatedAt).getTime() : NaN; ... L72: function loadConfig() { L73: const home = homedir(); L74: const credPath = join(home, ".deeplake", "credentials.json"); ... L92: workspaceId: creds?.workspaceId ?? "default", L93: apiUrl: creds?.apiUrl ?? "https://api.deeplake.ai", L94: tableName: "memory", ... L522: return; L523: process.stderr.write(`[deeplake-sql] ${msg} L524: `);
Low
Weak Crypto

Package source references weak cryptographic algorithms.

harnesses/openclaw/dist/graph-pull-worker.jsView on unpkg · L36
harnesses/cursor/bundle/wiki-worker.jsView file
20args: [...flags], L21: options: { input: prompt, stdio: ["pipe", "pipe", "pipe"], shell: true } L22: };
High
Shell

Package source references shell execution.

harnesses/cursor/bundle/wiki-worker.jsView on unpkg · L20
mcp/bundle/server.jsView file
23256send(message) { L23257: return new Promise((resolve4) => { L23258: const json2 = serializeMessage(message); L23259: if (this._stdout.write(json2)) { L23260: resolve4(); ... L23268: // dist/src/commands/auth.js L23269: import { execSync } from "node:child_process"; L23270:
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

mcp/bundle/server.jsView on unpkg · L23256
2944sourceCode = this.opts.code.process(sourceCode, sch); L2945: const makeValidate = new Function(`${names_1.default.self}`, `${names_1.default.scope}`, sourceCode); L2946: const validate = makeValidate(this, this.scope.get());
Low
Eval

Package source references a known benign dynamic code generation pattern.

mcp/bundle/server.jsView on unpkg · L2944
harnesses/cursor/bundle/embeddings/embed-daemon.jsView file
31const base = pathToFileURL(`${sharedDir}/`).href; L32: const absMain = createRequire(base).resolve("@huggingface/transformers"); L33: const mod = await import(pathToFileURL(absMain).href);
Medium
Dynamic Require

Package source references dynamic require/import behavior.

harnesses/cursor/bundle/embeddings/embed-daemon.jsView on unpkg · L31
bundle/cli.jsView file
9411// dist/src/embeddings/client.js L9412: import { connect } from "node:net"; L9413: import { spawn as spawn4 } from "node:child_process"; L9414: import { openSync as openSync2, closeSync as closeSync2, writeSync as writeSync2, unlinkSync as unlinkSync10, existsSync as existsSync32, readFileSync as readFileSync25 } from "nod... ... L9420: const uid = typeof process.getuid === "function" ? process.getuid() : void 0; L9421: return uid !== void 0 ? String(uid) : process.env.USER ?? "default"; L9422: }
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

bundle/cli.jsView on unpkg · L9411
harnesses/cursor/bundle/session-start.jsView file
23Cross-file remote execution chain: harnesses/cursor/bundle/session-start.js spawns bundle/cli.js; helper contains network access plus dynamic code execution. L23: function getIndexMarkerDir() { L24: return process.env.HIVEMIND_INDEX_MARKER_DIR ?? join6(tmpdir(), "hivemind-deeplake-indexes"); L25: } ... L33: try { L34: const raw = JSON.parse(readFileSync5(markerPath, "utf-8")); L35: const updatedAt = raw.updatedAt ? new Date(raw.updatedAt).getTime() : NaN; ... L59: // dist/src/commands/auth.js L60: import { execSync } from "node:child_process"; L61: ... L117: // dist/src/commands/auth.js L118: var DEFAULT_API_URL = "https://api.deeplake.ai"; L119: function decodeJwtPayload(token) {
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

harnesses/cursor/bundle/session-start.jsView on unpkg · L23
scripts/verify-install.shView file
path = scripts/verify-install.sh kind = build_helper sizeBytes = 9223 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

scripts/verify-install.shView on unpkg
harnesses/cursor/bundle/shell/deeplake-shell.jsView file
path = [redacted]-shell.js kind = oversized_source_file sizeBytes = 3073895 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

harnesses/cursor/bundle/shell/deeplake-shell.jsView on unpkg
path = [redacted]-shell.js kind = oversized_cli_entrypoint sizeBytes = 3073895 magicHex = [redacted]
Medium
Oversized Cli Entrypoint

Package contains an oversized executable-looking CLI entrypoint.

harnesses/cursor/bundle/shell/deeplake-shell.jsView on unpkg
harnesses/codex/bundle/session-start.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @deeplake/hivemind@0.7.116 matchedIdentity = npm:QGRlZXBsYWtlL2hpdmVtaW5k:0.7.116 similarity = 0.808 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

harnesses/codex/bundle/session-start.jsView on unpkg

Findings

1 Critical7 High6 Medium8 Low
CriticalPrevious Version Dangerous Deltaharnesses/codex/bundle/session-start.js
HighInstall Time Lifecycle Scriptspackage.json
HighChild Processharnesses/openclaw/dist/graph-pull-worker.js
HighShellharnesses/cursor/bundle/wiki-worker.js
HighSame File Env Network Executionbundle/cli.js
HighCommand Output Exfiltrationmcp/bundle/server.js
HighCross File Remote Execution Contextharnesses/cursor/bundle/session-start.js
HighOversized Source Fileharnesses/cursor/bundle/shell/deeplake-shell.js
MediumDynamic Requireharnesses/cursor/bundle/embeddings/embed-daemon.js
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperscripts/verify-install.sh
MediumOversized Cli Entrypointharnesses/cursor/bundle/shell/deeplake-shell.js
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvalmcp/bundle/server.js
LowWeak Cryptoharnesses/openclaw/dist/graph-pull-worker.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License