registry  /  @golproductions/check  /  3.2.24

@golproductions/check@3.2.24

Less hallucinations. A command firewall for AI agents: validates every shell command before execution, so fabricated commands are denied before they run.

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
EnvironmentVarsNetwork
Supply chain
HighEntropyStringsMinifiedTrivialUrlStrings
Manifest
NoLicense
scanned 2 file(s), 24.6 KB of source, external domains: github.com, golproductions.com, pub-e55366a7f5994be9be04f0e205179f4a.r2.dev, triage.golproductions.com, www.golproductions.com

Source & flagged code

2 flagged · loading source
dist/index.jsView file
1#!/usr/bin/env node L2: import{readFileSync as e,writeFileSync as o,mkdirSync as s,existsSync as n,createWriteStream as t,chmodSync as c,unlinkSync as r,rmSync as i}from"node:fs";import{spawnSync as l}fro...
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/index.jsView on unpkg · L1
1#!/usr/bin/env node L2: import{readFileSync as e,writeFileSync as o,mkdirSync as s,existsSync as n,createWriteStream as t,chmodSync as c,unlinkSync as r,rmSync as i}from"node:fs";import{spawnSync as l}fro...
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/index.jsView on unpkg · L1

Findings

2 High3 Medium5 Low
HighSame File Env Network Executiondist/index.js
HighCommand Output Exfiltrationdist/index.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings
LowNo License