registry  /  @intrect/openswarm  /  0.13.0

@intrect/openswarm@0.13.0

⚠ Under review

Autonomous AI agent orchestrator — Claude, GPT, Codex, and local models (Ollama/LMStudio/llama.cpp)

Static Scan Results

scanned 4d ago · by rust-scanner

Static analysis flagged 11 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 214 file(s), 1.92 MB of source, external domains: 127.0.0.1, api.cryptoquant.com, api.linear.app, api.openai.com, api.search.brave.com, api.tavily.com, api.telegram.org, auth.openai.com, chatgpt.com, docs.anthropic.com, github.com, html.duckduckgo.com, linear.app, mcp.linear.app, openrouter.ai, telemetry.intrect.io

Source & flagged code

4 flagged · loading source
dist/registry/bsDetector.jsView file
118category: 'security', L119: message: 'eval() 사용 — 코드 인젝션 위험', L120: pattern: /\beval\s*\(/,
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/registry/bsDetector.jsView on unpkg · L118
dist/cli/doctorHandler.jsView file
50try { L51: await import(mod); L52: line('ok', `native: ${mod}`, 'loads');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/cli/doctorHandler.jsView on unpkg · L50
dist/auth/openrouterPkce.jsView file
5// ============================================ L6: import { createServer } from 'node:http'; L7: import { randomBytes, createHash } from 'node:crypto'; L8: import { exec } from 'node:child_process'; L9: import { AuthProfileStore } from './oauthStore.js'; ... L18: function generateCodeVerifier() { L19: return randomBytes(96).toString('base64url'); L20: } ... L28: function openBrowser(url) { L29: const platform = process.platform; L30: const cmd = platform === 'darwin' ? 'open' : ... L57: const state = generateState();
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/auth/openrouterPkce.jsView on unpkg · L5
dist/cli.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @intrect/openswarm@0.11.0 matchedIdentity = npm:QGludHJlY3Qvb3BlbnN3YXJt:0.11.0 similarity = 0.958 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version.

dist/cli.jsView on unpkg

Findings

1 Critical1 High4 Medium5 Low
CriticalPrevious Version Dangerous Deltadist/cli.js
HighSandbox Evasion Gated Capabilitydist/auth/openrouterPkce.js
MediumDynamic Requiredist/cli/doctorHandler.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvaldist/registry/bsDetector.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings