registry  /  @promptbook/components  /  0.113.0-0

@promptbook/components@0.113.0-0

Promptbook: Create persistent AI agents that turn your company's scattered knowledge into action

Static Scan Results

scanned 5d ago · by rust-scanner

Static analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
CryptoEnvironmentVarsNetwork
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 0 file(s), 512 KB of source, external domains: ptbk.io, www.ptbk.io
Oversized source lightweight scan
esm/index.es.js2.76 MB file, sampled 256 KB
NetworkEnvironmentVarsHighEntropyStringsUrlStringsptbk.iowww.ptbk.io
umd/index.umd.js2.99 MB file, sampled 256 KB
NetworkEnvironmentVarsCryptoHighEntropyStringsUrlStringsptbk.iowww.ptbk.io

Source & flagged code

2 flagged · loading source
esm/index.es.jsView file
path = esm/index.es.js kind = oversized_source_file sizeBytes = 2892697 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

esm/index.es.jsView on unpkg
package.jsonView file
Runtime dependency names matching Node built-ins: crypto
High
Node Builtin Dependency Squat

Package declares a runtime dependency whose name matches a Node built-in module.

package.jsonView on unpkg

Findings

2 High3 Medium2 Low
HighOversized Source Fileesm/index.es.js
HighNode Builtin Dependency Squatpackage.json
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowHigh Entropy Strings
LowUrl Strings