Reusable KeypoolLive chatbot React component (<Chatbot />) built on @sctg/cline-agents, @sctg/cline-llms and @sctg/cline-shared
No confirmed malicious attack surface was established. The package is a browser chatbot that starts a worker when its React component is rendered and offers sandboxed, user-configured agent tools.
Package source references child process execution.
dist-lib/pyodide/pyodide.mjsView on unpkg · L2Package source references dynamic require/import behavior.
dist-lib/pyodide/pyodide.mjsView on unpkg · L2Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist-lib/pyodide/pyodide.asm.mjsView on unpkg · L1Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist-lib/pyodide/pyodide.asm.mjsView on unpkg · L1Package source references a known benign dynamic code generation pattern.
dist-lib/pyodide/pyodide.asm.mjsView on unpkg · L1Source reaches cloud instance metadata or link-local credential endpoints.
dist-lib/assets/dist-es-ZQNy3Fm5.jsView on unpkg · L56Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist-lib/assets/vertex-BCJshXv3.jsView on unpkg · L4Package ships high-entropy non-source blobs.
dist-lib/pyodide/python_stdlib.zipView on unpkgPackage ships compressed or archive-like blobs.
dist-lib/pyodide/python_stdlib.zipView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
dist-lib/pyodide/python_stdlib.zipView on unpkgPackage contains source files above the static scanner size ceiling.
dist-lib/index.jsView on unpkgPackage source references child process execution.
dist-lib/pyodide/pyodide.mjsView on unpkg · L2Package source references dynamic require/import behavior.
dist-lib/pyodide/pyodide.mjsView on unpkg · L2Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist-lib/pyodide/pyodide.asm.mjsView on unpkg · L1Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist-lib/pyodide/pyodide.asm.mjsView on unpkg · L1Package source references a known benign dynamic code generation pattern.
dist-lib/pyodide/pyodide.asm.mjsView on unpkg · L1Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist-lib/assets/vertex-BCJshXv3.jsView on unpkg · L4Package ships high-entropy non-source blobs.
dist-lib/pyodide/python_stdlib.zipView on unpkgPackage ships compressed or archive-like blobs.
dist-lib/pyodide/python_stdlib.zipView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
dist-lib/pyodide/python_stdlib.zipView on unpkgPackage contains source files above the static scanner size ceiling.
dist-lib/index.jsView on unpkgSource reaches cloud instance metadata or link-local credential endpoints.
dist-lib/assets/dist-es-ZQNy3Fm5.jsView on unpkg · L56