registry  /  @intrect/openswarm  /  0.17.5

@intrect/openswarm@0.17.5

⚠ Under review

Autonomous AI agent orchestrator — Claude, GPT, Codex, and local models (Ollama/LMStudio/llama.cpp)

Static Scan Results

scanned 45m ago · by rust-scanner

Static analysis flagged 14 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 229 file(s), 2.17 MB of source, external domains: 127.0.0.1, api.cryptoquant.com, api.linear.app, api.openai.com, api.search.brave.com, api.tavily.com, api.telegram.org, auth.openai.com, chatgpt.com, github.com, html.duckduckgo.com, linear.app, mcp.linear.app, openrouter.ai, registry.npmjs.org, telemetry.intrect.io

Source & flagged code

7 flagged · loading source
dist/auth/openBrowser.jsView file
1import { spawn } from 'node:child_process'; L2: function getOpenCommand(url) {
High
Child Process

Package source references child process execution.

dist/auth/openBrowser.jsView on unpkg · L1
dist/adapters/base.jsView file
33const proc = spawn(cmd, { L34: shell: true, L35: cwd: options.cwd,
High
Shell

Package source references shell execution.

dist/adapters/base.jsView on unpkg · L33
dist/registry/bsDetector.jsView file
118category: 'security', L119: message: 'eval() 사용 — 코드 인젝션 위험', L120: pattern: /\beval\s*\(/,
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/registry/bsDetector.jsView on unpkg · L118
dist/cli/doctorHandler.jsView file
50try { L51: await import(mod); L52: line('ok', `native: ${mod}`, 'loads');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/cli/doctorHandler.jsView on unpkg · L50
dist/cli/daemon.jsView file
5// `openswarm start` spawns a detached child that runs the full service (index.js L6: // → startService), redirects stdout/stderr to a log file, writes a PID file, L7: // and exits the parent. `openswarm stop` reads the PID file and sends SIGTERM. L8: // `openswarm status` reports running/stopped plus port 3847 health. L9: import { spawn } from 'node:child_process'; L10: import { closeSync, existsSync, mkdirSync, openSync, readFileSync, unlinkSync, writeFileSync, statSync } from 'node:fs'; ... L13: import { fileURLToPath } from 'node:url'; L14: const STATE_DIR = join(homedir(), '.config', 'openswarm'); L15: const LOG_DIR = join(STATE_DIR, 'logs'); ... L50: try { L51: const res = await fetch(`http://127.0.0.1:${port}/api/stats`, { L52: signal: AbortSignal.timeout(timeoutMs),
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/cli/daemon.jsView on unpkg · L5
dist/support/updateNotifier.jsView file
119} L120: /** `npm install -g <pkg>@latest`. Returns true on success. (INT-2394) */ L121: function defaultInstall(pkg) { L122: try { L123: execFileSync('npm', ['install', '-g', `${pkg}@latest`], { stdio: 'inherit', timeout: 180_000 }); L124: return true;
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/support/updateNotifier.jsView on unpkg · L119
dist/cli.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @intrect/openswarm@0.17.1 matchedIdentity = npm:QGludHJlY3Qvb3BlbnN3YXJt:0.17.1 similarity = 0.583 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/cli.jsView on unpkg

Findings

1 Critical3 High5 Medium5 Low
CriticalPrevious Version Dangerous Deltadist/cli.js
HighChild Processdist/auth/openBrowser.js
HighShelldist/adapters/base.js
HighRuntime Package Installdist/support/updateNotifier.js
MediumDynamic Requiredist/cli/doctorHandler.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/cli/daemon.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvaldist/registry/bsDetector.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings