registry  /  @sctg/cline-core  /  4.0.0-beta.20260701083503

@sctg/cline-core@4.0.0-beta.20260701083503

⚠ Under review

Cline Core SDK for Node Runtime

Static Scan Results

scanned 16d ago · by rust-scanner

Static analysis flagged 17 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedTelemetryUrlStrings
Manifest
NoLicense
scanned 6 file(s), 2.36 MB of source, external domains: 127.0.0.1, api.ai, api.hicap.ai, api.openai.com, data.cline.bot, github.com, inference.baseten.co, inference.poolside.ai, models.dev

Source & flagged code

8 flagged · loading source
dist/index.jsView file
1import{createRequire as dA}from"node:module";var vA=Object.defineProperty;var cA=($)=>$;function uA($,Q){this[$]=cA.bind(null,Q)}var e9=($,Q)=>{for(var Z in Q)vA($,Z,{get:Q[Z],enum... L2: `,"utf8"),aU()}function pQ(){return N0().telemetryOptOut}function eU($,Q={}){k$({...N0(),telemetryOptOut:$},Q)}function $D(){return N0().autoUpdateEnabled}function QD($,Q={}){k$({.... L3: `)}function c_($){if(!$||$.length===0)return[];let Q=[];for(let Z of $){let J=u_(Z);if(J)Q.push(J)}return Q}function u_($){let Q=$.trim();if(!Q)return;let Z=Q.match(/^data:([^;,]+)... L4: `),W}finally{V5.delete($.lockDir),tO($)}}function U$($,Q,Z={}){let J=eO($,Z);return TV(J,$,Q)}async function H5($,Q,Z={}){let J=await $q($,Z);return TV(J,$,Q)}function Qq($){let Q=... L5: <html lang="en"> ... L44: </body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}return Q}async functi...
Critical
Credential Exfiltration

Source appears to send environment or credential material to an external endpoint.

dist/index.jsView on unpkg · L1
1Trigger-reachable chain: manifest.main -> dist/index.js L1: import{createRequire as dA}from"node:module";var vA=Object.defineProperty;var cA=($)=>$;function uA($,Q){this[$]=cA.bind(null,Q)}var e9=($,Q)=>{for(var Z in Q)vA($,Z,{get:Q[Z],enum... L2: `,"utf8"),aU()}function pQ(){return N0().telemetryOptOut}function eU($,Q={}){k$({...N0(),telemetryOptOut:$},Q)}function $D(){return N0().autoUpdateEnabled}function QD($,Q={}){k$({.... L3: `)}function c_($){if(!$||$.length===0)return[];let Q=[];for(let Z of $){let J=u_(Z);if(J)Q.push(J)}return Q}function u_($){let Q=$.trim();if(!Q)return;let Z=Q.match(/^data:([^;,]+)... L4: `),W}finally{V5.delete($.lockDir),tO($)}}function U$($,Q,Z={}){let J=eO($,Z);return TV(J,$,Q)}async function H5($,Q,Z={}){let J=await $q($,Z);return TV(J,$,Q)}function Qq($){let Q=... L5: <html lang="en"> ... L44: </body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}…
Critical
Trigger Reachable Dangerous Capability

A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.

dist/index.jsView on unpkg · L1
44</body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}return Q}async functi...
High
Child Process

Package source references child process execution.

dist/index.jsView on unpkg · L44
44</body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}return Q}async functi...
High
Shell

Package source references shell execution.

dist/index.jsView on unpkg · L44
44</body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}return Q}async functi...
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/index.jsView on unpkg · L44
44</body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}return Q}async functi...
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/index.jsView on unpkg · L44
3`)}function c_($){if(!$||$.length===0)return[];let Q=[];for(let Z of $){let J=u_(Z);if(J)Q.push(J)}return Q}function u_($){let Q=$.trim();if(!Q)return;let Z=Q.match(/^data:([^;,]+)... L4: `),W}finally{V5.delete($.lockDir),tO($)}}function U$($,Q,Z={}){let J=eO($,Z);return TV(J,$,Q)}async function H5($,Q,Z={}){let J=await $q($,Z);return TV(J,$,Q)}function Qq($){let Q=... L5: <html lang="en">
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index.jsView on unpkg · L3
1import{createRequire as dA}from"node:module";var vA=Object.defineProperty;var cA=($)=>$;function uA($,Q){this[$]=cA.bind(null,Q)}var e9=($,Q)=>{for(var Z in Q)vA($,Z,{get:Q[Z],enum... L2: `,"utf8"),aU()}function pQ(){return N0().telemetryOptOut}function eU($,Q={}){k$({...N0(),telemetryOptOut:$},Q)}function $D(){return N0().autoUpdateEnabled}function QD($,Q={}){k$({.... L3: `)}function c_($){if(!$||$.length===0)return[];let Q=[];for(let Z of $){let J=u_(Z);if(J)Q.push(J)}return Q}function u_($){let Q=$.trim();if(!Q)return;let Z=Q.match(/^data:([^;,]+)... L4: `),W}finally{V5.delete($.lockDir),tO($)}}function U$($,Q,Z={}){let J=eO($,Z);return TV(J,$,Q)}async function H5($,Q,Z={}){let J=await $q($,Z);return TV(J,$,Q)}function Qq($){let Q=... L5: <html lang="en"> ... L44: </body> L45: </html>`;function bW($){let Q="";for(let Z=0;Z<$.length;Z+=1)Q+=String.fromCharCode($[Z]??0);return btoa(Q).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var JZ=mD();function WZ($,Q,Z){if(typeof $==="number"&&$>0)return $;if(Z){let J=process.env[Z];if(J){let W=Number(J);if(Number.isInteger(W)&&W>0)return W}}return Q}async functi...
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/index.jsView on unpkg · L1

Findings

2 Critical4 High4 Medium7 Low
CriticalCredential Exfiltrationdist/index.js
CriticalTrigger Reachable Dangerous Capabilitydist/index.js
HighChild Processdist/index.js
HighShelldist/index.js
HighSame File Env Network Executiondist/index.js
HighCommand Output Exfiltrationdist/index.js
MediumDynamic Requiredist/index.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowWeak Cryptodist/index.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings
LowNo License