registry  /  @kenkaiiii/ggcoder  /  5.13.3

@kenkaiiii/ggcoder@5.13.3

CLI coding agent with OAuth authentication for Anthropic, OpenAI, and Gemini

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 13 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsObfuscatedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 423 file(s), 2.89 MB of source, external domains: 0.0.0.0, 127.0.0.1, 192.168.1.5, a.example, ads.linkedin.com, api.example, api.telegram.org, api.xiaomimimo.com, api.z.ai, app.com, awin1.com, b.example, chatgpt.com, coupon.example.com, developer.mozilla.org, docs.a.com, docs.b.com, docs.example.com, docs.python.org, duckduckgo.com, example-ad.com, example.com, github.com, global.example, googleadservices.com, html.duckduckgo.com, ice1.somafm.com, ice5.somafm.com, lite.duckduckgo.com, mcp.asana.com, mcp.canva.com, mcp.notion.com, mediaworks.streamguys1.com, mpv.io, platform.example.com, project.example, reactbits.dev, search.brave.com, skills.sh, stream.radioparadise.com, t.me, token-plan-sgp.xiaomimimo.com, uiverse.io, www.bing.com, www.google.com, www.typescriptlang.org, x.example

Source & flagged code

5 flagged · loading source
dist/tools/html-extract.jsView file
30const [linkedom, readability, turndown, gfmMod] = (await Promise.all([ L31: import(linkedomName), L32: import(readabilityName),
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/tools/html-extract.jsView on unpkg · L30
dist/core/hashline.jsView file
1/** L2: * Hash-anchored line addressing — the pure, UI-free core shared by the hashline
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/core/hashline.jsView on unpkg · L1
dist/core/radio.jsView file
1import { spawn } from "node:child_process"; L2: import { existsSync } from "node:fs"; L3: import { createConnection } from "node:net"; L4: import os from "node:os"; ... L47: function extraPlayerDirs() { L48: switch (process.platform) { L49: case "darwin": ... L75: // 1) PATH (covers terminal launches + any inherited shell environment). L76: const pathDirs = (process.env.PATH ?? "").split(path.delimiter).filter(Boolean); L77: // 2) Well-known dirs a GUI PATH typically omits. ... L86: * Streaming-capable players in priority order. Each gets its quietest flag L87: * combination — radio runs in the background, we don't want stdout/stderr
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/core/radio.jsView on unpkg · L1
dist/tools/web-fetch.jsView file
4/** L5: * Block requests to private/internal network addresses to prevent SSRF. L6: * Checks the hostname against known private IP ranges and reserved domains. ... L165: for (let hop = 0; hop <= MAX_REDIRECTS; hop++) { L166: const response = await fetch(currentUrl, { L167: headers: FETCH_HEADERS, ... L196: contentLength: contentLengthHeader ? Number(contentLengthHeader) : null, L197: body: response, L198: finalUrl: currentUrl, ... L225: } L226: const buffer = await response.body.arrayBuffer(); L227: if (buffer.byteLength > MAX_PDF_BYTES) {
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

dist/tools/web-fetch.jsView on unpkg · L4
dist/core/subagent-manager.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @kenkaiiii/ggcoder@5.13.2 matchedIdentity = npm:QGtlbmthaWlpaS9nZ2NvZGVy:5.13.2 similarity = 0.942 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/core/subagent-manager.jsView on unpkg

Findings

3 High4 Medium6 Low
HighSandbox Evasion Gated Capabilitydist/core/radio.js
HighCloud Metadata Accessdist/tools/web-fetch.js
HighPrevious Version Dangerous Deltadist/core/subagent-manager.js
MediumDynamic Requiredist/tools/html-extract.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowWeak Cryptodist/core/hashline.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings