registry  /  @quantum-ai/free-code  /  2.2.1

@quantum-ai/free-code@2.2.1

DEPRECATED: Please use @quantum-ai/free-code@2.2.16 or later.

Autonomous coding agent CLI - capable of creating/editing files, running commands, using the browser, and more

AI Security Review

scanned 2d ago · by lpm-firewall-ai

No confirmed malicious attack surface. The package is a bundled Cline-style autonomous coding agent CLI with expected runtime access to files, shell, plugins, MCP, provider APIs, telemetry, and optional updates when invoked by the user.

Static reason
No blocking static signals were detected.
Trigger
User runs cline-cli2 or explicit CLI subcommands/env-gated update paths
Impact
User-authorized project file edits, command execution, plugin/MCP configuration, and provider API calls
Mechanism
documented coding-agent CLI capabilities
Rationale
Static inspection shows a powerful but package-aligned coding-agent CLI, with no install-time hooks, no import-time payload, and no concrete exfiltration or persistence chain. The risky primitives are documented user-invoked functionality rather than malicious package behavior.
Evidence
package.jsonREADME.mddist/index.cjsdist/index.mjsdist/extensions/plugin-sandbox-bootstrap.js
Network endpoints4
app.cline.botapi.cline.botapi.cline.bot/v1/mcpregistry.npmjs.org/

Decision evidence

public snapshot
AI called this Clean at 82.0% confidence as Benign with medium false-positive risk.
Evidence for block
  • README.md advertises powerful coding-agent behavior including file edits, shell commands, MCP, and YOLO auto-approval.
  • dist/index.mjs contains user-invoked plugin, MCP, skill, update, worktree, dashboard, and agent runtime commands.
  • dist/index.mjs has guarded auto-update via CLINE_AUTO_UPDATE_ON_STARTUP and explicit update command that can run package-manager installs.
Evidence against
  • package.json has no preinstall/install/postinstall lifecycle scripts.
  • dist/index.cjs only dynamically imports dist/index.mjs and calls runCli as the CLI entrypoint.
  • Dangerous primitives are runtime CLI features documented in README.md and activated by user commands or env flags, not import/install-time behavior.
  • dist/extensions/plugin-sandbox-bootstrap.js loads declared Cline plugins through IPC and validates manifests; no hardcoded exfiltration endpoint found.
  • Network endpoints found are package-aligned Cline, npm registry, model provider, telemetry, and user-configured MCP/provider URLs.
  • No evidence of credential harvesting beyond user-supplied provider/API keys for the coding agent workflow.
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemShell
Supply chain
HighEntropyStringsMinifiedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 270 KB of source, external domains: json-schema.org
Oversized source lightweight scan
dist/index.mjs24.4 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsCryptoShellHighEntropyStringsUrlStringsjson-schema.org

Source & flagged code

4 flagged · loading source
dist/index.cjsView file
1#!/usr/bin/env bun L2: const path = require('path'); L3: const { pathToFileURL } = require('url');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index.cjsView on unpkg · L1
dist/tree-sitter-markdown_inline-j5349f42.wasmView file
path = dist/tree-sitter-markdown_inline-j5349f42.wasm kind = wasm_module sizeBytes = 426020 magicHex = [redacted]
Medium
Ships Wasm Module

Package ships WebAssembly modules.

dist/tree-sitter-markdown_inline-j5349f42.wasmView on unpkg
dist/index.mjsView file
path = dist/index.mjs kind = oversized_source_file sizeBytes = 25563111 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/index.mjsView on unpkg
path = dist/index.mjs kind = oversized_cli_entrypoint sizeBytes = 25563111 magicHex = [redacted]
Medium
Oversized Cli Entrypoint

Package contains an oversized executable-looking CLI entrypoint.

dist/index.mjsView on unpkg

Findings

1 High5 Medium4 Low
HighOversized Source Filedist/index.mjs
MediumDynamic Requiredist/index.cjs
MediumEnvironment Vars
MediumShips Wasm Moduledist/tree-sitter-markdown_inline-j5349f42.wasm
MediumOversized Cli Entrypointdist/index.mjs
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings