registry  /  @desplega.ai/agent-swarm  /  1.115.0

@desplega.ai/agent-swarm@1.115.0

Multi-agent orchestration for Claude Code, Codex, Gemini CLI, and other AI coding assistants

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 45 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsTelemetryUrlStrings
Manifest
WildcardDependency
scanned 1,191 file(s), 25.5 MB of source, external domains: 10.0.0.1, 127.0.0.1, 169.254.169.254, 169.254.170.2, 172.16.0.1, 172.31.255.255, 172.32.0.1, 192.168.1.1, a.co, a.com, a.local, accounts.google.com, acme.example, agent-abc-123.swarm.example.com, agent-fs.example.test, agent-fs.test, agent-svc-test.swarm.example.com, agent-swarm-mcp.desplega.sh, agent-swarm.cloud, agent-swarm.cloud.attacker.com, agent-swarm.dev, agent-swarm.dev.attacker.com, ai-gateway.vercel.sh, ai-sdk.dev, aiplatform.googleapis.com, api-docs.deepseek.com, api.agent-swarm.cloud, api.agent-swarm.dev, api.agentmail.ai, api.agentmail.to, api.ant-ling.com, api.anthropic.com, api.atlassian.com, api.attio.com, api.cerebras.ai, api.clarifai.com, api.claudin.io, api.cloudflare.com, api.deepseek.com, api.devin.ai, api.e2b.app, api.e2b.example, api.example-swarm.dev, api.example.com, api.example.test, api.fireworks.ai, api.github.com, api.githubcopilot.com, api.groq.com, api.hubspot.com
Oversized source lightweight scan
dist/cli-hrhye2rm.js2.88 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsEvalHighEntropyStringsUrlStringsraw.githubusercontent.com
dist/cli-r9f6ngrf.js8.46 MB file, sampled 256 KB
NetworkChildProcessEnvironmentVarsHighEntropyStrings
dist/cli-wh91zby6.js4.05 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsShellHighEntropyStringsUrlStringsapi-docs.deepseek.comapi.clarifai.comapi.claudin.ioapi.deepseek.comapi.githubcopilot.comapi.minimax.ioapi.minimaxi.comapi.qnaigc.comapi.synthetic.newapi.thegrid.aiapis.iflow.cnclaudin.iodashscope.aliyuncs.comdeveloper.qiniu.comdocs.clarifai.comdocs.github.comdocs.wafer.aipass.wafer.aiplatform.iflow.cnplatform.minimax.ioplatform.minimaxi.complatform.xiaomimimo.comrequesty.airouter.requesty.ai
dist/otel-impl-wbns8hf7.js2.31 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsHighEntropyStringsUrlStringsopentelemetry.io
dist/pi-mono-adapter-05sck1ds.js6.58 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsCryptoShellHighEntropyStringsUrlStringsgithub.com

Source & flagged code

35 flagged · loading source
src/tests/task-supersede-resume.test.tsView file
642patternName = github_pat severity = critical line = 642 matchedText = const fa...aa";
Critical
Critical Secret

Package contains a critical-looking secret pattern.

src/tests/task-supersede-resume.test.tsView on unpkg · L642
642patternName = github_pat severity = critical line = 642 matchedText = const fa...aa";
Critical
Secret Pattern

GitHub personal access token in src/tests/task-supersede-resume.test.ts

src/tests/task-supersede-resume.test.tsView on unpkg · L642
dist/cli-q5dzzak0.jsView file
9exports.execAsync = undefined; L10: var child_process = __require("child_process"); L11: var util = __require("util");
High
Child Process

Package source references child process execution.

dist/cli-q5dzzak0.jsView on unpkg · L9
dist/cli-q1rx7g0d.jsView file
1205try { L1206: fn = new Function(...PARAM_SHADOW_KEYS, "payload", `${BODY_SHADOW_PREAMBLE} return (${filter})(payload);`); L1207: } catch (err) {
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/cli-q1rx7g0d.jsView on unpkg · L1205
dist/index-vdkr5z2w.js#virtual:normalized:round1View file
98} else { L99: throw new Error("signWithCredentials with signingRegion '*' is only supported when using the CRT dependency @aws-sdk/signature-v4-crt. Please check whether you have installed the \... L100: }
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index-vdkr5z2w.js#virtual:normalized:round1View on unpkg · L98
dist/cli-pet3aev6.jsView file
11770} L11771: function combineURLs(baseURL, relativeURL) { L11772: return relativeURL ? baseURL.replace(/\/?\/$/, "") + "/" + relativeURL.replace(/^\/+/, "") : baseURL; ... L20876: try { L20877: data = node_fs_1.default.readFileSync(node_path_1.default.resolve("".concat(installationDir, "/app-latest"))); L20878: installation = JSON.parse(data.toString());
High
Remote Agent Bridge

Source exposes local file and command tools to a remote model endpoint.

dist/cli-pet3aev6.jsView on unpkg · L11770
34require_stream, L35: require_websocket, L36: require_websocket_server ... L166: L167: // node_modules/@slack/web-api/package.json L168: var require_package = __commonJS((exports, module) => { ... L224: eventemitter3: "^5.0.1", L225: "form-data": "^4.0.4", L226: "is-electron": "2.2.2", ... L10390: } else { L10391: dataBuffer = Buffer.concat([dataBuffer, Buffer.from(this._streams[i])]); L10392: }
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/cli-pet3aev6.jsView on unpkg · L34
dist/cli-czkae1fp.jsView file
589}; L590: var uriEncode = (value) => encodeURIComponent(value).replace(/[!*'()]/g, (c) => `%${c.charCodeAt(0).toString(16).toUpperCase()}`); L591: var endpointFunctions = { ... L2231: stream.on("error", (err) => { L2232: collector.end(); L2233: reject(err); ... L2368: throw new Error(`Cannot transform payload Blob to web stream. Please make sure the Blob.stream() is polyfilled. L2369: ` + "If you are using React Native, this API is not yet supported, see: https://react-native.canny.io/feature-requests/p/fetch-streaming-body"); L2370: } ... L5567: var getHomeDir = () => { L5568: const { HOME, USERPROFILE, HOMEPATH, HOMEDRIVE = `C:${node_path.sep}` } = process.env; L5569: if (HOME)
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

dist/cli-czkae1fp.jsView on unpkg · L589
dist/index-2qn2qndv.jsView file
15var supportsRequestInitExt = () => { L16: return typeof process === "object" && Number.parseInt(process?.versions?.node?.substring(0, 2)) >= 18 && process.versions.undici; L17: }; ... L59: const serializedBody = body === undefined ? undefined : bodySerializer(body, mergeHeaders(baseHeaders, headers, params.header)); L60: const finalHeaders = mergeHeaders(serializedBody === undefined || serializedBody instanceof FormData ? {} : { L61: "Content-Type": "application/json" ... L176: } L177: let error = await response.text(); L178: try { ... L1434: const dv = new DataView(new ArrayBuffer(8)); L1435: const ok = typeof BigInt === "function" && typeof dv.getBigInt64 === "function" && typeof dv.getBigUint64 === "function" && typeof dv.setBigInt64 === "function" && typeof dv.setBig... L1436: if (ok) {
High
Base64 Obscured Url

Source decodes a Base64-obscured HTTP endpoint at runtime.

dist/index-2qn2qndv.jsView on unpkg · L15
plugin/skills/artifacts/examples/static-report.shView file
path = [redacted]-report.sh kind = build_helper sizeBytes = 390 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

plugin/skills/artifacts/examples/static-report.shView on unpkg
dist/otel-impl-wbns8hf7.jsView file
path = dist/otel-impl-wbns8hf7.js kind = oversized_source_file sizeBytes = 2426294 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/otel-impl-wbns8hf7.jsView on unpkg
dist/cli-12vb0xg6.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @desplega.ai/agent-swarm@1.106.0 matchedIdentity = npm:[redacted]:1.106.0 similarity = 0.642 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/cli-12vb0xg6.jsView on unpkg
src/tests/status.test.tsView file
343patternName = private_key_rsa severity = critical line = 343 matchedText = process......";
Critical
Secret Pattern

RSA private key in src/tests/status.test.ts

src/tests/status.test.tsView on unpkg · L343
src/tests/http-api-integration.test.tsView file
1676patternName = stripe_webhook_secret severity = high line = 1676 matchedText = const WE...cret
High
Secret Pattern

Stripe webhook signing secret in src/tests/http-api-integration.test.ts

src/tests/http-api-integration.test.tsView on unpkg · L1676
src/tests/launch-password-rejection.test.tsView file
76patternName = generic_password severity = medium line = 76 matchedText = password...sh",
Medium
Secret Pattern

Hardcoded password in src/tests/launch-password-rejection.test.ts

src/tests/launch-password-rejection.test.tsView on unpkg · L76
src/tests/secret-scrubber.test.tsView file
51patternName = github_pat severity = critical line = 51 matchedText = process....89";
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L51
53patternName = github_pat severity = critical line = 53 matchedText = const ou...d");
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L53
102patternName = github_pat severity = critical line = 102 matchedText = "ghp_poo...AB";
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L102
104patternName = github_pat severity = critical line = 104 matchedText = const ou...0");
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L104
105patternName = github_pat severity = critical line = 105 matchedText = expect(o...0");
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L105
110patternName = github_pat severity = critical line = 110 matchedText = process....89";
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L110
114patternName = github_pat severity = critical line = 114 matchedText = "gh=ghp_...90";
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L114
146patternName = github_fine_grained severity = critical line = 146 matchedText = const ou...f");
Critical
Secret Pattern

GitHub fine-grained PAT in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L146
152patternName = github_pat severity = critical line = 152 matchedText = const ou...d");
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L152
158patternName = github_oauth severity = critical line = 158 matchedText = const ou...d");
Critical
Secret Pattern

GitHub OAuth access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L158
163patternName = github_server_token severity = critical line = 163 matchedText = const ou...d");
Critical
Secret Pattern

GitHub server-to-server token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L163
197patternName = aws_access_key severity = critical line = 197 matchedText = const ou...g");
Critical
Secret Pattern

AWS access key ID in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L197
199patternName = aws_access_key severity = critical line = 199 matchedText = expect(o...E");
Critical
Secret Pattern

AWS access key ID in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L199
219patternName = github_pat severity = critical line = 219 matchedText = const ou...D");
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L219
297patternName = github_pat severity = critical line = 297 matchedText = process....89";
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L297
299patternName = github_pat severity = critical line = 299 matchedText = const on...9");
Critical
Secret Pattern

GitHub personal access token in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L299
204patternName = google_api_key severity = high line = 204 matchedText = const ou...l");
High
Secret Pattern

Google API key in src/tests/secret-scrubber.test.ts

src/tests/secret-scrubber.test.tsView on unpkg · L204
src/tests/pages-http.test.tsView file
133patternName = generic_password severity = medium line = 133 matchedText = const pa...-9";
Medium
Secret Pattern

Hardcoded password in src/tests/pages-http.test.ts

src/tests/pages-http.test.tsView on unpkg · L133
src/tests/create-page-tool.test.tsView file
187patternName = generic_password severity = medium line = 187 matchedText = password...me",
Medium
Secret Pattern

Hardcoded password in src/tests/create-page-tool.test.ts

src/tests/create-page-tool.test.tsView on unpkg · L187
src/tests/pages-public-authed-401.test.tsView file
92patternName = generic_password severity = medium line = 92 matchedText = password...sh",
Medium
Secret Pattern

Hardcoded password in src/tests/pages-public-authed-401.test.ts

src/tests/pages-public-authed-401.test.tsView on unpkg · L92

Findings

19 Critical9 High10 Medium7 Low
CriticalCritical Secretsrc/tests/task-supersede-resume.test.ts
CriticalSecret Patternsrc/tests/task-supersede-resume.test.ts
CriticalSecret Patternsrc/tests/status.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
CriticalSecret Patternsrc/tests/secret-scrubber.test.ts
HighChild Processdist/cli-q5dzzak0.js
HighShell
HighCloud Metadata Accessdist/cli-czkae1fp.js
HighRemote Agent Bridgedist/cli-pet3aev6.js
HighBase64 Obscured Urldist/index-2qn2qndv.js
HighOversized Source Filedist/otel-impl-wbns8hf7.js
HighPrevious Version Dangerous Deltadist/cli-12vb0xg6.js
HighSecret Patternsrc/tests/http-api-integration.test.ts
HighSecret Patternsrc/tests/secret-scrubber.test.ts
MediumDynamic Requiredist/index-vdkr5z2w.js#virtual:normalized:round1
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperplugin/skills/artifacts/examples/static-report.sh
MediumStructural Risk Force Deep Review
MediumWildcard Dependency
MediumSecret Patternsrc/tests/launch-password-rejection.test.ts
MediumSecret Patternsrc/tests/pages-http.test.ts
MediumSecret Patternsrc/tests/create-page-tool.test.ts
MediumSecret Patternsrc/tests/pages-public-authed-401.test.ts
LowScripts Present
LowEvaldist/cli-q1rx7g0d.js
LowWeak Cryptodist/cli-pet3aev6.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings