registry  /  @f5-sales-demo/xcsh  /  19.58.3

@f5-sales-demo/xcsh@19.58.3

Coding agent CLI with read, bash, edit, write tools and session management

Static Scan Results

scanned 4h ago · by rust-scanner

Static analysis flagged 18 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNativeBindingsNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedObfuscatedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 781 file(s), 8.36 MB of source, external domains: 127.0.0.1, addons.mozilla.org, api.anthropic.com, api.coingecko.com, api.crossref.org, api.discogs.com, api.exa.ai, api.github.com, api.kimi.com, api.npmjs.org, api.nuget.org, api.openai.com, api.opencorporates.com, api.osv.dev, api.parallel.ai, api.perplexity.ai, api.rawg.io, api.search.brave.com, api.semanticscholar.org, api.smithery.ai, api.snapcraft.io, api.stackexchange.com, api.synthetic.new, api.tavily.com, api.w3.org, api.z.ai, artifacthub.io, arxiv.org, astral.sh, aur.archlinux.org, auth.example.com, auth.kimi.com, cdnjs.cloudflare.com, chatgpt.com, cheat.sh, choosealicense.com, chromewebstore.google.com, cli.github.com, clojars.org, cloudcode-pa.googleapis.com, community.chocolatey.org, covers.openlibrary.org, crates.io, daily-cloudcode-pa.googleapis.com, daily-cloudcode-pa.sandbox.googleapis.com, data.sec.gov, dev.to, docs.rs, doi.org, eprint.iacr.org
Oversized source lightweight scan
src/internal-urls/docs-index.generated.ts8.60 MB file, sampled 256 KB
FilesystemChildProcessMinifiedUrlStrings127.0.0.1api.anthropic.comauth.kimi.comgateway.ai.cloudflare.comgistpreview.github.io

Source & flagged code

9 flagged · loading source
src/internal-urls/terraform-index.generated.tsView file
621patternName = aws_access_key severity = critical line = 621 matchedText = 'resourc...n}',
Critical
Critical Secret

Package contains a critical-looking secret pattern.

src/internal-urls/terraform-index.generated.tsView on unpkg · L621
621patternName = aws_access_key severity = critical line = 621 matchedText = 'resourc...n}',
Critical
Secret Pattern

AWS access key ID in src/internal-urls/terraform-index.generated.ts

src/internal-urls/terraform-index.generated.tsView on unpkg · L621
src/tools/browser.tsView file
1184try { L1185: return await new Function(`return (async () => (${source}))();`)(); L1186: } catch {
Low
Eval

Package source references a known benign dynamic code generation pattern.

src/tools/browser.tsView on unpkg · L1184
src/tools/renderers.tsView file
65// eslint-disable-next-line @typescript-eslint/no-require-imports L66: return require("./read").readToolRenderer as ToolRenderer; L67: },
Medium
Dynamic Require

Package source references dynamic require/import behavior.

src/tools/renderers.tsView on unpkg · L65
src/utils/shell-snapshot.tsView file
4* Creates a snapshot file that captures the user's shell environment from their L5: * .bashrc/.zshrc, which can be sourced before each command to provide a familiar L6: * shell experience. ... L26: function getShellConfigFile(shell: string): string { L27: const home = os.homedir(); L28: if (shell.includes("zsh")) return path.join(home, ".zshrc"); ... L52: typeset -f > /dev/null 2>&1 L53: # Get user function names - filter system/private ones L54: typeset +f 2>/dev/null | grep -vE '^(_|__)' | grep -vE '${commonToolsRegex}' | while read func; do ... L61: declare -f > /dev/null 2>&1 L62: # Get user function names - filter system/private ones, use base64 for special chars L63: declare -F 2>/dev/null | cut -d' ' -f3 | grep -vE '^(_|__)' | grep -vE '${commonToolsRegex}' | while read func; do
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

src/utils/shell-snapshot.tsView on unpkg · L4
src/stt/setup.tsView file
3L4: const isWindows = process.platform === "win32"; L5: ... L14: const recorderHint = isWindows L15: ? "PowerShell fallback available. For better quality: install SoX or FFmpeg." L16: : "Install SoX: sudo apt install sox, or FFmpeg: sudo apt install ffmpeg"; ... L18: const pythonCmd = resolvePython(); L19: const pythonHint = "Install Python 3.8+ from https://python.org"; L20: ... L23: const check = Bun.spawnSync([pythonCmd, "-c", "import whisper"], { L24: stdout: "pipe", L25: stderr: "pipe",
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

src/stt/setup.tsView on unpkg · L3
src/ipy/prelude.pyView file
path = src/ipy/prelude.py kind = build_helper sizeBytes = 34987 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

src/ipy/prelude.pyView on unpkg
src/internal-urls/docs-index.generated.tsView file
path = src/internal-urls/docs-index.generated.ts kind = oversized_source_file sizeBytes = 9015288 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

src/internal-urls/docs-index.generated.tsView on unpkg
src/tools/python.tsView file
578patternName = generic_password severity = medium line = 578 matchedText = pwd: "...
Medium
Secret Pattern

Hardcoded password in src/tools/python.ts

src/tools/python.tsView on unpkg · L578

Findings

2 Critical2 High7 Medium7 Low
CriticalCritical Secretsrc/internal-urls/terraform-index.generated.ts
CriticalSecret Patternsrc/internal-urls/terraform-index.generated.ts
HighSandbox Evasion Gated Capabilitysrc/stt/setup.ts
HighOversized Source Filesrc/internal-urls/docs-index.generated.ts
MediumDynamic Requiresrc/tools/renderers.ts
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencesrc/utils/shell-snapshot.ts
MediumShips Build Helpersrc/ipy/prelude.py
MediumStructural Risk Force Deep Review
MediumSecret Patternsrc/tools/python.ts
LowScripts Present
LowEvalsrc/tools/browser.ts
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings