registry  /  @openwop/openwop-conformance  /  1.51.0

@openwop/openwop-conformance@1.51.0

Production-ready black-box conformance suite for OpenWOP v1.0 compliant servers.

Static Scan Results

scanned 2d ago · by rust-scanner

Static analysis flagged 15 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 444 file(s), 2.57 MB of source, external domains: 10.0.0.5, 127.0.0.1, 169.254.169.254, api.example.com, api.github.com, api.githubcopilot.com, attacker.example, caller.example.com, evil.example, example.com, example.test, h.example, harness.example, host-a.example, host.example, json-schema.org, oauth.synthetic.openwop.test, openwop.dev, packs.openwop.dev, untrusted.example.invalid, vllm.internal, www.w3.org

Source & flagged code

7 flagged · loading source
dist/cli.jsView file
25*/ L26: import { spawnSync } from 'node:child_process'; L27: import { fileURLToPath } from 'node:url';
High
Child Process

Package source references child process execution.

dist/cli.jsView on unpkg · L25
380} L381: const result = spawnSync('npx', ['vitest', ...vitestArgs], { L382: cwd: conformanceRoot,
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/cli.jsView on unpkg · L380
src/scenarios/idempotency-key-determinism.test.tsView file
101if (!packAvailable) return; L102: const mod = (await import(PACK_PATH)) as { idempotencyKey?: IdempotencyKeyFn }; L103: if (typeof mod.idempotencyKey !== 'function') {
Medium
Dynamic Require

Package source references dynamic require/import behavior.

src/scenarios/idempotency-key-determinism.test.tsView on unpkg · L101
src/scenarios/sandbox-mvp-behavior.test.tsView file
8* 1. host-fs-escape — sandboxed code attempting `require('fs')` fails closed L9: * 2. host-env-leak — sandboxed code attempting `process.env` access fails closed L10: * 3. network-escape — sandboxed code attempting `require('http')` fails closed L11: * 4. host-process-escape — sandboxed code attempting `require('child_process')` fails closed L12: * 5. sandbox-timeout — runaway loop terminated by the host's wallClockLimitMs
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

src/scenarios/sandbox-mvp-behavior.test.tsView on unpkg · L8
src/scenarios/safefetch-live-audit.test.ts#virtual:normalized:round1View file
9* host can co-advertise "toolHooks.prePostEventshttpClient.safeFetch", L10: * pass the seam, and still ship a production `createSafeFetch()` with no audit L11: * hooks — the "quiet bypass" §host.http line "centralizing egress in the host ... L68: // toolReturned carries the forbidden status). cf. `http-client-ssrf-guard`. L69: const BLOCKED_URL = 'http://169.254.169.254/latest/meta-data/'; L70: // A public URL the guard SHOULD allow — best-effort coverage of the *success*
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

src/scenarios/safefetch-live-audit.test.ts#virtual:normalized:round1View on unpkg · L9
fixtures/wasm-sandbox/misbehaving-fs.wasmView file
path = fixtures/wasm-sandbox/misbehaving-fs.wasm kind = payload_in_excluded_dir sizeBytes = 92 magicHex = [redacted]
High
Payload In Excluded Dir

Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.

fixtures/wasm-sandbox/misbehaving-fs.wasmView on unpkg
path = fixtures/wasm-sandbox/misbehaving-fs.wasm kind = wasm_module sizeBytes = 92 magicHex = [redacted]
Medium
Ships Wasm Module

Package ships WebAssembly modules.

fixtures/wasm-sandbox/misbehaving-fs.wasmView on unpkg

Findings

6 High5 Medium4 Low
HighChild Processdist/cli.js
HighShell
HighSame File Env Network Executionsrc/scenarios/sandbox-mvp-behavior.test.ts
HighCloud Metadata Accesssrc/scenarios/safefetch-live-audit.test.ts#virtual:normalized:round1
HighRuntime Package Installdist/cli.js
HighPayload In Excluded Dirfixtures/wasm-sandbox/misbehaving-fs.wasm
MediumDynamic Requiresrc/scenarios/idempotency-key-determinism.test.ts
MediumNetwork
MediumEnvironment Vars
MediumShips Wasm Modulefixtures/wasm-sandbox/misbehaving-fs.wasm
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings