registry  /  @kenkaiiii/gg-boss  /  5.6.0

@kenkaiiii/gg-boss@5.6.0

⚠ Under review

Orchestrator agent that drives multiple ggcoder sessions across projects from a single chat

Static Scan Results

scanned 8d ago · by rust-scanner

Static analysis flagged 16 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 7 file(s), 2.57 MB of source, external domains: api.telegram.org, developer.couchbase.com, docs.microsoft.com, feross.org, github.com, ice1.somafm.com, juliadocs.github.io, mediaworks.streamguys1.com, mpv.io, stream.radioparadise.com, support.office.com, t.me, tc39.es, web.archive.org, www.gnu.org, www.ibm.com, www.php.net, www.postgresql.org, www.w3.org, yaml.org
Oversized source lightweight scan
dist/chunk-Z6LUX75S.js14.1 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsCryptoShellDynamicRequireHighEntropyStrings

Source & flagged code

7 flagged · loading source
dist/cli.jsView file
78use_input_default, L79: use_stdout_default, L80: wrapPlain ... L100: const content = await fs.readFile(getLinksPath(), "utf-8"); L101: const parsed = JSON.parse(content); L102: return { projects: parsed.projects ?? [] }; ... L126: L127: // package.json L128: var package_default = { ... L135: type: "git", L136: url: "git+https://github.com/kenkaiiii/gg-framework.git", L137: directory: "packages/gg-boss"
Critical
Command Output Exfiltration

Source executes local commands and sends command output to an external endpoint.

dist/cli.jsView on unpkg · L78
78Trigger-reachable chain: manifest.bin -> dist/cli.js L78: use_input_default, L79: use_stdout_default, L80: wrapPlain ... L100: const content = await fs.readFile(getLinksPath(), "utf-8"); L101: const parsed = JSON.parse(content); L102: return { projects: parsed.projects ?? [] }; ... L126: L127: // package.json L128: var package_default = { ... L135: type: "git", L136: url: "git+https://github.com/kenkaiiii/gg-framework.git", L137: directory: "packages/gg-boss"
Critical
Trigger Reachable Dangerous Capability

A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.

dist/cli.jsView on unpkg · L78
1698init_esm_shims(); L1699: import { spawn } from "child_process"; L1700: import { existsSync } from "fs";
High
Child Process

Package source references child process execution.

dist/cli.jsView on unpkg · L1698
1776const child = spawn( L1777: "powershell.exe", L1778: ["-NoProfile", "-WindowStyle", "Hidden", "-Command", psScript],
High
Shell

Package source references shell execution.

dist/cli.jsView on unpkg · L1776
78use_input_default, L79: use_stdout_default, L80: wrapPlain ... L100: const content = await fs.readFile(getLinksPath(), "utf-8"); L101: const parsed = JSON.parse(content); L102: return { projects: parsed.projects ?? [] }; ... L126: L127: // package.json L128: var package_default = { ... L135: type: "git", L136: url: "git+https://github.com/kenkaiiii/gg-framework.git", L137: directory: "packages/gg-boss"
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/cli.jsView on unpkg · L78
dist/done.mp3View file
path = dist/done.mp3 kind = high_entropy_blob sizeBytes = 57600 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

dist/done.mp3View on unpkg
dist/chunk-Z6LUX75S.jsView file
path = dist/chunk-Z6LUX75S.js kind = oversized_source_file sizeBytes = 14761222 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/chunk-Z6LUX75S.jsView on unpkg

Findings

2 Critical5 High4 Medium5 Low
CriticalCommand Output Exfiltrationdist/cli.js
CriticalTrigger Reachable Dangerous Capabilitydist/cli.js
HighChild Processdist/cli.js
HighShelldist/cli.js
HighSandbox Evasion Gated Capabilitydist/cli.js
HighShips High Entropy Blobdist/done.mp3
HighOversized Source Filedist/chunk-Z6LUX75S.js
MediumDynamic Require
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings