14contains invisible/control Unicode U+200C (zero width non-joiner)
`).filter(e=>e.trim()),n=[];for(let e of t)try{let t=vn(JSON.parse(e));t&&n.push(t)}catch(e){O(`Failed to parse JSONL line: ${e}`);continue}return n}async function z(e){return new Promise((t,n)=>{let i=[],a=r(e,{encoding:`utf8`}),o=w({input
CriticalTrojan Source Unicode
Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/index.mjsView on unpkg · L14 1Trigger-reachable chain: manifest.main -> dist/index.mjs
L1: #!/usr/bin/env node
L2: import e from"node:process";import{json as t}from"node:stream/consumers";import n,{createReadStream as r,existsSync as i,watch as a}from"node:fs";import o,{basename as s,dirname as...
L3: `)}catch(t){e.stderr.write(`cc-candybar: daemon spawn failed: ${t.message}\n`)}}let Ze=null;function Qe(){let t=ke();for(let r=0;r<2;r++){try{let r=n.openSync(t,`wx`,384);try{n.wri...
...
L11: `).length:0)}async getUpstreamAsync(e){return Ht(Bt(`git rev-parse @{u}`,await this.execGitAsync([`rev-parse`,`--abbrev-ref`,`@{u}`],{cwd:e,timeout:2e3}),`absent`))}async getRepoNa...
L12: `),r=null,i=`clean`,a=0,o=0,s=0,c=0;for(let e of n)if(e){if(e.startsWith(`## `)){let t=e.substring(3).split(`...`)[0];t&&t!==`HEAD (no branch)`&&(r=t);continue}if(e.length>=2){let ...
L13: `)[0];r&&JSON.parse(r).sessionId===e&&n.push(t)}catch{O(`Failed to check agent file ${t}`)}}}catch(e){O(`Failed to read subagents directory ${r}:`,e)}return n}const gn=new Map;asyn...
CriticalTrigger Reachable Dangerous Capability
A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/index.mjsView on unpkg · L1 1#!/usr/bin/env node
L2: import e from"node:process";import{json as t}from"node:stream/consumers";import n,{createReadStream as r,existsSync as i,watch as a}from"node:fs";import o,{basename as s,dirname as...
L3: `)}catch(t){e.stderr.write(`cc-candybar: daemon spawn failed: ${t.message}\n`)}}let Ze=null;function Qe(){let t=ke();for(let r=0;r<2;r++){try{let r=n.openSync(t,`wx`,384);try{n.wri...
HighChild Process
Package source references child process execution.
dist/index.mjsView on unpkg · L1 1#!/usr/bin/env node
L2: import e from"node:process";import{json as t}from"node:stream/consumers";import n,{createReadStream as r,existsSync as i,watch as a}from"node:fs";import o,{basename as s,dirname as...
L3: `)}catch(t){e.stderr.write(`cc-candybar: daemon spawn failed: ${t.message}\n`)}}let Ze=null;function Qe(){let t=ke();for(let r=0;r<2;r++){try{let r=n.openSync(t,`wx`,384);try{n.wri...
...
L11: `).length:0)}async getUpstreamAsync(e){return Ht(Bt(`git rev-parse @{u}`,await this.execGitAsync([`rev-parse`,`--abbrev-ref`,`@{u}`],{cwd:e,timeout:2e3}),`absent`))}async getRepoNa...
L12: `),r=null,i=`clean`,a=0,o=0,s=0,c=0;for(let e of n)if(e){if(e.startsWith(`## `)){let t=e.substring(3).split(`...`)[0];t&&t!==`HEAD (no branch)`&&(r=t);continue}if(e.length>=2){let ...
L13: `)[0];r&&JSON.parse(r).sessionId===e&&n.push(t)}catch{O(`Failed to check agent file ${t}`)}}}catch(e){O(`Failed to read subagents directory ${r}:`,e)}return n}const gn=new Map;asyn...
HighSame File Env Network Execution
A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/index.mjsView on unpkg · L1 1#!/usr/bin/env node
L2: import e from"node:process";import{json as t}from"node:stream/consumers";import n,{createReadStream as r,existsSync as i,watch as a}from"node:fs";import o,{basename as s,dirname as...
L3: `)}catch(t){e.stderr.write(`cc-candybar: daemon spawn failed: ${t.message}\n`)}}let Ze=null;function Qe(){let t=ke();for(let r=0;r<2;r++){try{let r=n.openSync(t,`wx`,384);try{n.wri...
...
L11: `).length:0)}async getUpstreamAsync(e){return Ht(Bt(`git rev-parse @{u}`,await this.execGitAsync([`rev-parse`,`--abbrev-ref`,`@{u}`],{cwd:e,timeout:2e3}),`absent`))}async getRepoNa...
L12: `),r=null,i=`clean`,a=0,o=0,s=0,c=0;for(let e of n)if(e){if(e.startsWith(`## `)){let t=e.substring(3).split(`...`)[0];t&&t!==`HEAD (no branch)`&&(r=t);continue}if(e.length>=2){let ...
L13: `)[0];r&&JSON.parse(r).sessionId===e&&n.push(t)}catch{O(`Failed to check agent file ${t}`)}}}catch(e){O(`Failed to read subagents directory ${r}:`,e)}return n}const gn=new Map;asyn...
HighCommand Output Exfiltration
Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/index.mjsView on unpkg · L1 1#!/usr/bin/env node
L2: import e from"node:process";import{json as t}from"node:stream/consumers";import n,{createReadStream as r,existsSync as i,watch as a}from"node:fs";import o,{basename as s,dirname as...
L3: `)}catch(t){e.stderr.write(`cc-candybar: daemon spawn failed: ${t.message}\n`)}}let Ze=null;function Qe(){let t=ke();for(let r=0;r<2;r++){try{let r=n.openSync(t,`wx`,384);try{n.wri...
L4: `)}function Dt(e){if(!e)throw Error(`install-url-handler: process.argv[1] not set`);return e.endsWith(`.mjs`)||e.endsWith(`.js`)?e:o.resolve(o.dirname(e),`..`,`dist`,`index.mjs`)}f...
...
L11: `).length:0)}async getUpstreamAsync(e){return Ht(Bt(`git rev-parse @{u}`,await this.execGitAsync([`rev-parse`,`--abbrev-ref`,`@{u}`],{cwd:e,timeout:2e3}),`absent`))}async getRepoNa...
L12: `),r=null,i=`clean`,a=0,o=0,s=0,c=0;for(let e of n)if(e){if(e.startsWith(`## `)){let t=e.substring(3).split(`...`)[0];t&&t!==`HEAD (no branch)`&&(r=t);continue}if(e.length>=2){let ...
L13: `)[0];r&&JSON.parse(r).sessionId===e&&n.push(t)}catch{O(`Failed to check agent file ${t}`)}}}catch(e){O(`Failed to read subagents directory ${r}:`,e)}return n}const gn=new Map;asyn...
...
L66: Re-annotating fields is not allo
LowWeak Crypto
Package source references weak cryptographic algorithms.
dist/index.mjsView on unpkg · L1