registry  /  @phnx-labs/agents-cli  /  1.20.33

@phnx-labs/agents-cli@1.20.33

⚠ Under review

One CLI for all your AI coding agents - versions, config, cloud dispatch, sessions, and teams (now with first-class Grok Build CLI support)

Static Scan Results

scanned 8d ago · by rust-scanner

Static analysis flagged 17 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsObfuscatedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 317 file(s), 3.79 MB of source, external domains: 127.0.0.1, agentclientprotocol.com, ai.azure.com, anthropic.com, antigravity.google, api.anthropic.com, api.example.com, api.openai.com, api.prix.dev, app.factory.ai, aws.amazon.com, cloud.google.com, code.kimi.com, console.anthropic.com, console.x.ai, cursor.com, docs.openclaw.ai, docs.x.ai, example.com, generativelanguage.googleapis.com, git-scm.com, github.com, hermes-agent.nousresearch.com, linear.app, nodejs.org, opencode.ai, openrouter.ai, platform.claude.com, raw.githubusercontent.com, registry.modelcontextprotocol.io, registry.npmjs.org, unpkg.com, www.apple.com, www.npmjs.com, www.truefoundry.com, x.ai

Source & flagged code

9 flagged · loading source
package.jsonView file
scripts.postinstall = node scripts/postinstall.js
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = node scripts/postinstall.js
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
dist/index.jsView file
350if (answer === 'now') { L351: const { spawnSync } = await import('child_process'); L352: let spinner = ora('Resolving package metadata...').start();
High
Child Process

Package source references child process execution.

dist/index.jsView on unpkg · L350
dist/lib/exec.jsView file
484// (see createVersionedAlias); prefer it so spawn() can launch it (the bash L485: // script is not directly executable by cmd.exe). When no shim exists on disk L486: // we fall back to the bare versioned name, which spawnAgent() resolves via
High
Shell

Package source references shell execution.

dist/lib/exec.jsView on unpkg · L484
dist/lib/platform/ipc.jsView file
12* touching disk, and never probe the result with fs.existsSync (it always reports L13: * false). Both forms are accepted by net.createServer / net.createConnection. L14: */ L15: export function ipcEndpoint(socketPath, platform = process.platform) { L16: if (platform === 'win32') {
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/lib/platform/ipc.jsView on unpkg · L12
dist/lib/agents.jsView file
10*/ L11: import { execFile } from 'child_process'; L12: import { promisify } from 'util'; ... L23: const execFileAsync = promisify(execFile); L24: const HOME = os.homedir(); L25: /** ... L38: try { L39: cliVersionCache = JSON.parse(fs.readFileSync(CLI_VERSION_CACHE_PATH, 'utf-8')); L40: } ... L70: export function findInPath(command) { L71: const pathEnv = process.env.PATH || ''; L72: const pathExt = process.platform === 'win32' ? (process.env.PATHEXT || '').split(';') : [''];
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/lib/agents.jsView on unpkg · L10
dist/lib/cli-resources.jsView file
356assertNpmPackage(method.npm); L357: const r = spawnSync('npm', ['install', '-g', method.npm], { stdio: 'inherit' }); L358: if (r.status !== 0) { L359: throw new Error(`npm install -g ${method.npm} exited with status ${r.status ?? 'unknown'}`); L360: }
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/lib/cli-resources.jsView on unpkg · L356
dist/lib/menubar/MenubarHelper.app/Contents/MacOS/MenubarHelperView file
path = dist/lib/menubar/MenubarHelper.[redacted] kind = native_binary sizeBytes = 465968 magicHex = [redacted]
Medium
Ships Native Binary

Package ships native binary artifacts.

dist/lib/menubar/MenubarHelper.app/Contents/MacOS/MenubarHelperView on unpkg
dist/commands/secrets.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @phnx-labs/agents-cli@1.20.28 matchedIdentity = npm:QHBobngtbGFicy9hZ2VudHMtY2xp:1.20.28 similarity = 0.592 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version.

dist/commands/secrets.jsView on unpkg

Findings

1 Critical4 High6 Medium6 Low
CriticalPrevious Version Dangerous Deltadist/commands/secrets.js
HighInstall Time Lifecycle Scriptspackage.json
HighChild Processdist/index.js
HighShelldist/lib/exec.js
HighRuntime Package Installdist/lib/cli-resources.js
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/lib/agents.js
MediumShips Native Binarydist/lib/menubar/MenubarHelper.app/Contents/MacOS/MenubarHelper
MediumStructural Risk Force Deep Review
LowScripts Present
LowWeak Cryptodist/lib/platform/ipc.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings