6const __filename = __regentFileURLToPath(import.meta.url);
L7: const __dirname = __regentDirname(__filename);
L8: var hue=Object.create;var xw=Object.defineProperty;var gue=Object.getOwnPropertyDescriptor;var yue=Object.getOwnPropertyNames;var wue=Object.getPrototypeOf,xue=Object.prototype.has...
L9: `:""},this._extScope=e,this._scope=new Ca.Scope({parent:e}),this._nodes=[new DE]}toString(){return this._root.render(this.opts)}name(e){return this._scope.name(e)}scopeName(e){retu...
L10: || (${s} == "string" && ${o} && ${o} == +${o})`).assign(a,(0,ln._)`+${o}`);return;case"integer":r.elseIf((0,ln._)`${s} === "boolean" || ${o} === null
L11: || (${s} === "string" && ${o} && ${o} == +${o} && !(${o} % 1))`).assign(a,(0,ln._)`+${o}`);return;case"boolean":r.elseIf((0,ln._)`${o} === "false" || ${o} === 0 || ${o} === null`)....
L12: || ${s} === "boolean" || ${o} === null`).assign(a,(0,ln._)`[${o}]`)}}}function Rfe({gen:t,parentData:e,parentDataProperty:n},r){t.if((0,ln._)`${e} !== undefined`,()=>t.assign((0,ln...
L13: missingProperty: ${r},
...
L18: ${new this._window.XMLSerializer().serializeToString(f)}`;return typeof Blob>"u"||this._options.jsdom?Buffer.from(E):new Blob([E],{type:x})}
CriticalWallet Drain
Source uses private key material to transfer cryptocurrency funds.
dist/server.jsView on unpkg · L6 96Trigger-reachable chain: manifest.bin -> dist/server.js
L96: `)}
L97: `}function iSe(t,e){if(!t.appCallTrace||!t.disassembly)return"";let n=e;return e!==void 0?n=e:n={maxValueWidth:NR,topOfStackFirst:!1},sY(t.appCallTrace,t.disassembly,n)}function sS...
L98: `);return{content:[er(s)],details:i}}}}var BOe=Be.Object({refresh:Be.Optional(Be.Boolean({description:"DEPRECATED / no-op (plugin v0.0.84+): every `regent_capabilities` call now hi...
...
L102: `);return{content:[er(u)],details:s}}}}var XN=Be.Object({message_base64:Be.String({minLength:1,description:"Base64 of the raw bytes that were signed (same bytes the signer received...
L103: ${t.length}`,n=new TextEncoder().encode(e),r=new Uint8Array(n.length+t.length);return r.set(n,0),r.set(t,n.length),wa(r)}function eC(t,e){let n=e.slice(0,32),r=e.slice(32,64),o=e[6...
L104: `)}var yw={type:"object",properties:{},additionalProperties:!1};function Nf(t){return{content:[{type:"text",text:t}]}}async function Xde(t){if(!t)return Nf("No active pairing invit...
...
L106: `));if(e.active)return Nf(`Already connected (peer=${e.active.peerDid}). Run regent_status for details.`);if(e.pendingInvitation&&!Yde(e.pendingInvitation))return Xde(e.pen…
CriticalTrigger Reachable Dangerous Capability
A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/server.jsView on unpkg · L96 110`)}catch(i){process.stderr.write(`[regent] could not write tool-proxy endpoint: ${String(i)}
L111: `)}}),n}function oue(){let t=tue();if(!(t&&t.pid!==process.pid))try{ENe(mC())}catch{}}function iue(t,e){let n=tue();if(!n)return Promise.resolve({content:[{type:"text",text:"The Re...
L112: `))o.trim()&&process.stderr.write(`[regent] app-server: ${o}
102`);return{content:[er(u)],details:s}}}}var XN=Be.Object({message_base64:Be.String({minLength:1,description:"Base64 of the raw bytes that were signed (same bytes the signer received...
L103: ${t.length}`,n=new TextEncoder().encode(e),r=new Uint8Array(n.length+t.length);return r.set(n,0),r.set(t,n.length),wa(r)}function eC(t,e){let n=e.slice(0,32),r=e.slice(32,64),o=e[6...
L104: `)}var yw={type:"object",properties:{},additionalProperties:!1};function Nf(t){return{content:[{type:"text",text:t}]}}async function Xde(t){if(!t)return Nf("No active pairing invit...
...
L110: `)}catch(i){process.stderr.write(`[regent] could not write tool-proxy endpoint: ${String(i)}
L111: `)}}),n}function oue(){let t=tue();if(!(t&&t.pid!==process.pid))try{ENe(mC())}catch{}}function iue(t,e){let n=tue();if(!n)return Promise.resolve({content:[{type:"text",text:"The Re...
L112: `))o.trim()&&process.stderr.write(`[regent] app-server: ${o}
HighSame File Env Network Execution
A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/server.jsView on unpkg · L102 96`)}
L97: `}function iSe(t,e){if(!t.appCallTrace||!t.disassembly)return"";let n=e;return e!==void 0?n=e:n={maxValueWidth:NR,topOfStackFirst:!1},sY(t.appCallTrace,t.disassembly,n)}function sS...
L98: `);return{content:[er(s)],details:i}}}}var BOe=Be.Object({refresh:Be.Optional(Be.Boolean({description:"DEPRECATED / no-op (plugin v0.0.84+): every `regent_capabilities` call now hi...
...
L102: `);return{content:[er(u)],details:s}}}}var XN=Be.Object({message_base64:Be.String({minLength:1,description:"Base64 of the raw bytes that were signed (same bytes the signer received...
L103: ${t.length}`,n=new TextEncoder().encode(e),r=new Uint8Array(n.length+t.length);return r.set(n,0),r.set(t,n.length),wa(r)}function eC(t,e){let n=e.slice(0,32),r=e.slice(32,64),o=e[6...
L104: `)}var yw={type:"object",properties:{},additionalProperties:!1};function Nf(t){return{content:[{type:"text",text:t}]}}async function Xde(t){if(!t)return Nf("No active pairing invit...
...
L106: `));if(e.active)return Nf(`Already connected (peer=${e.active.peerDid}). Run regent_status for details.`);if(e.pendingInvitation&&!Yde(e.pendingInvitation))return Xde(e.pendingInvi...
L107: `)}async function xNe(t,e){return e.act
HighCommand Output Exfiltration
Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/server.jsView on unpkg · L96 11|| (${s} === "string" && ${o} && ${o} == +${o} && !(${o} % 1))`).assign(a,(0,ln._)`+${o}`);return;case"boolean":r.elseIf((0,ln._)`${o} === "false" || ${o} === 0 || ${o} === null`)....
L12: || ${s} === "boolean" || ${o} === null`).assign(a,(0,ln._)`[${o}]`)}}}function Rfe({gen:t,parentData:e,parentDataProperty:n},r){t.if((0,ln._)`${e} !== undefined`,()=>t.assign((0,ln...
L13: missingProperty: ${r},
LowEval
Package source references a known benign dynamic code generation pattern.
dist/server.jsView on unpkg · L11 6const __filename = __regentFileURLToPath(import.meta.url);
L7: const __dirname = __regentDirname(__filename);
L8: var hue=Object.create;var xw=Object.defineProperty;var gue=Object.getOwnPropertyDescriptor;var yue=Object.getOwnPropertyNames;var wue=Object.getPrototypeOf,xue=Object.prototype.has...
L9: `:""},this._extScope=e,this._scope=new Ca.Scope({parent:e}),this._nodes=[new DE]}toString(){return this._root.render(this.opts)}name(e){return this._scope.name(e)}scopeName(e){retu...
L10: || (${s} == "string" && ${o} && ${o} == +${o})`).assign(a,(0,ln._)`+${o}`);return;case"integer":r.elseIf((0,ln._)`${s} === "boolean" || ${o} === null
L11: || (${s} === "string" && ${o} && ${o} == +${o} && !(${o} % 1))`).assign(a,(0,ln._)`+${o}`);return;case"boolean":r.elseIf((0,ln._)`${o} === "false" || ${o} === 0 || ${o} === null`)....
L12: || ${s} === "boolean" || ${o} === null`).assign(a,(0,ln._)`[${o}]`)}}}function Rfe({gen:t,parentData:e,parentDataProperty:n},r){t.if((0,ln._)`${e} !== undefined`,()=>t.assign((0,ln...
L13: missingProperty: ${r},
...
L18: ${new this._window.XMLSerializer().serializeToString(f)}`;return typeof Blob>"u"||this._options.jsdom?Buffer.from(E):new Blob([E],{type:x})}
LowWeak Crypto
Package source references weak cryptographic algorithms.
dist/server.jsView on unpkg · L6