registry  /  @fased/fased  /  0.1.47

@fased/fased@0.1.47

⚠ Under review

Fased Agent self-hosted AI gateway with channels, tools, plugins, and operator modules

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 18 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNativeBindingsNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedObfuscatedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 3,086 file(s), 24.1 MB of source, external domains: 127.0.0.1, 192.168.1.100, accounts.google.com, agent.example.com, ai-gateway.vercel.sh, aistudio.google.com, albumart.url, api.anthropic.com, api.botframework.com, api.chutes.ai, api.deepgram.com, api.devnet.solana.com, api.elevenlabs.io, api.exa.ai, api.example.com, api.firecrawl.dev, api.github.com, api.groq.com, api.individual.githubcopilot.com, api.jup.ag, api.kimi.com, api.mainnet-beta.solana.com, api.minimax.io, api.minimaxi.com, api.mistral.ai, api.moonshot.ai, api.moonshot.cn, api.openai.com, api.perplexity.ai, api.plivo.com, api.pluralkit.me, api.push.apple.com, api.sandbox.push.apple.com, api.search.brave.com, api.synthetic.new, api.tavily.com, api.telegram.org, api.telnyx.com, api.together.xyz, api.twilio.com, api.venice.ai, api.voyageai.com, api.x.ai, api.xiaomimimo.com, api.z.ai, ark.ap-southeast.bytepluses.com, ark.cn-beijing.volces.com, arweave.net, auth.x.ai, autopush-cloudcode-pa.sandbox.googleapis.com
Oversized source lightweight scan
dist/plugin-sdk/config-schema-ChJcPn7x.js3.43 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsCryptoShellWebSocketHighEntropyStringsUrlStringsapi.elevenlabs.ioapi.github.comapi.openai.comapi.push.apple.comapi.sandbox.push.apple.combrew.shregistry.npmjs.org

Source & flagged code

8 flagged · loading source
dist/browser/config.jsView file
69patternName = generic_password severity = medium line = 69 matchedText = parsed.p...ed";
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/browser/config.jsView on unpkg · L69
dist/infra/git-commit.jsView file
19try { L20: const require = createRequire(import.meta.url); L21: const pkg = require("../../package.json");
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/infra/git-commit.jsView on unpkg · L19
extensions/voice-call/src/webhook-security.tsView file
76* L77: * @see https://www.twilio.[redacted]-security L78: */ ... L82: url: string, L83: params: URLSearchParams, L84: ): boolean { ... L90: L91: // HMAC-SHA1 with auth token, then base64 encode L92: const expectedSignature = crypto
Low
Weak Crypto

Package source references weak cryptographic algorithms.

extensions/voice-call/src/webhook-security.tsView on unpkg · L76
dist/infra/net/ssrf.jsView file
2import { normalizeHostname } from "./hostname.js"; L3: import { Agent } from "undici"; L4: import { lookup } from "node:dns"; L5: import { lookup as lookup$1 } from "node:dns/promises"; ... L31: } L32: function resolveAllowPrivateNetwork(policy) { L33: return policy?.dangerouslyAllowPrivateNetwork === true || policy?.allowPrivateNetwork === true;
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

dist/infra/net/ssrf.jsView on unpkg · L2
dist/tui/tui-formatters.jsView file
18contains invisible/control Unicode U+2067 (right-to-left isolate) const RTL_ISOLATE_START = "<U+2067>";
Critical
Trojan Source Unicode

Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.

dist/tui/tui-formatters.jsView on unpkg · L18
scripts/start-managed.shView file
path = scripts/start-managed.sh kind = build_helper sizeBytes = 57069 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

scripts/start-managed.shView on unpkg
dist/plugin-sdk/config-schema-ChJcPn7x.jsView file
path = dist/plugin-sdk/config-schema-ChJcPn7x.js kind = oversized_source_file sizeBytes = 3598572 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/plugin-sdk/config-schema-ChJcPn7x.jsView on unpkg
dist/infra/shell-env.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @fased/fased@0.1.45 matchedIdentity = npm:QGZhc2VkL2Zhc2Vk:0.1.45 similarity = 0.633 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/infra/shell-env.jsView on unpkg

Findings

1 Critical3 High6 Medium8 Low
CriticalTrojan Source Unicodedist/tui/tui-formatters.js
HighCloud Metadata Accessdist/infra/net/ssrf.js
HighOversized Source Filedist/plugin-sdk/config-schema-ChJcPn7x.js
HighPrevious Version Dangerous Deltadist/infra/shell-env.js
MediumSecret Patterndist/browser/config.js
MediumDynamic Requiredist/infra/git-commit.js
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperscripts/start-managed.sh
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEval
LowWeak Cryptoextensions/voice-call/src/webhook-security.ts
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings