registry  /  @openagents-org/agent-launcher  /  0.2.146

@openagents-org/agent-launcher@0.2.146

OpenAgents Launcher — install, configure, and run AI coding agents from your terminal

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 49 file(s), 911 KB of source, external domains: aider.chat, ampcode.com, api.anthropic.com, api.github.com, api.moonshot.ai, api.openai.com, claude.ai, cursor.com, endpoint.openagents.org, example.com, github.com, nodejs.org, raw.githubusercontent.com, registry.npmjs.org, workspace-endpoint.openagents.org, workspace.openagents.org, www.apple.com

Source & flagged code

4 flagged · loading source
bin/agent-connector.jsView file
3L4: require('../src/cli.js');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/agent-connector.jsView on unpkg · L3
src/adapters/nanoclaw-protocol.jsView file
3* L4: * NanoClaw is a CONTAINERIZED agent runtime, not an stdin/stdout CLI and not a L5: * direct LLM API. The OpenAgents bridge talks to a thin native NanoClaw ... L184: try { L185: const obj = JSON.parse(line); L186: if (obj && typeof obj === 'object' && typeof obj.op === 'string') frames.push(obj);
Low
Weak Crypto

Package source references weak cryptographic algorithms.

src/adapters/nanoclaw-protocol.jsView on unpkg · L3
src/autostart.jsView file
12const path = require('path'); L13: const { execSync } = require('child_process'); L14: const { whichBinary, IS_WINDOWS } = require('./paths'); L15: L16: const IS_MACOS = process.platform === 'darwin'; L17: const IS_LINUX = process.platform === 'linux' && !IS_MACOS; L18: const HOME = process.env.HOME || process.env.USERPROFILE || ''; L19: ... L26: const nodeBin = whichBinary('node') || process.execPath; L27: const cliPath = path.resolve(__dirname, '..', 'bin', 'agent-connector.js'); L28: ... L58: try {
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

src/autostart.jsView on unpkg · L12
src/adapters/hermes.jsView file
3* L4: * Bridges Nous Research's Hermes Agent CLI (https://github.com/NousResearch/hermes-agent) L5: * to an OpenAgents workspace by spawning `hermes chat -q <prompt> -Q` per ... L19: const path = require('path'); L20: const { execSync, spawn } = require('child_process'); L21: ... L25: L26: const IS_WINDOWS = process.platform === 'win32'; L27: const HERMES_INSTALL_HINT = IS_WINDOWS ... L52: this._sessionsFile = path.join( L53: os.homedir(), '.openagents', 'sessions', L54: `${this.workspaceId}_${this.agentName}_hermes.json`,
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

src/adapters/hermes.jsView on unpkg · L3

Findings

1 High5 Medium5 Low
HighSandbox Evasion Gated Capabilitysrc/adapters/hermes.js
MediumDynamic Requirebin/agent-connector.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencesrc/autostart.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowWeak Cryptosrc/adapters/nanoclaw-protocol.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings