registry  /  @quantum-ai/gemini-cli  /  0.45.12

@quantum-ai/gemini-cli@0.45.12

Gemini CLI - Autonomous AI Agent with TUI

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 11 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsObfuscatedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 563 file(s), 3.28 MB of source, external domains: ai.google.dev, aistudio.google.com, antigravity.google, api.github.com, cloud.google.com, developers.google.com, geminicli.com, github.com, goo.gle, policies.google.com, raw.githubusercontent.com, www.w3.org, www.youtube.com

Source & flagged code

3 flagged · loading source
dist/commands/gemma/setup.jsView file
8import path from 'node:path'; L9: import { execFileSync, spawn as nodeSpawn } from 'node:child_process'; L10: import chalk from 'chalk'; ... L22: input: process.stdin, L23: output: process.stdout, L24: }); ... L46: const pctStr = (pct * 100).toFixed(0).padStart(3); L47: process.stderr.write(`\r [${bar}] ${pctStr}% ${formatBytes(downloaded)} / ${formatBytes(total)}`); L48: } ... L57: } L58: const response = await fetch(url, { redirect: 'follow' }); L59: if (!response.ok) {
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/commands/gemma/setup.jsView on unpkg · L8
package.jsonView file
dependencies registry_only=@github/keytar,@lydell/node-pty,@lydell/node-pty-darwin-arm64,@lydell/node-pty-darwin-x64,@lydell/node-pty-linux-x64,@lydell/node-pty-win32-arm64,@lydell/node-pty-win32-x64,node-pty
Critical
Manifest Confusion

Tarball package.json differs from the npm registry version manifest for scripts or dependency sets.

package.jsonView on unpkg
dist/ui/components/messages/ToolConfirmationMessage.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @quantum-ai/gemini-cli@0.45.8 matchedIdentity = npm:QHF1YW50dW0tYWkvZ2VtaW5pLWNsaQ:0.45.8 similarity = 0.842 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/ui/components/messages/ToolConfirmationMessage.jsView on unpkg

Findings

1 Critical2 High3 Medium5 Low
CriticalManifest Confusionpackage.json
HighSandbox Evasion Gated Capabilitydist/commands/gemma/setup.js
HighPrevious Version Dangerous Deltadist/ui/components/messages/ToolConfirmationMessage.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings