registry  /  @sctg/cline-core  /  4.0.0-beta.20260715204357

@sctg/cline-core@4.0.0-beta.20260715204357

⚠ Under review

Cline Core SDK for Node Runtime

Static Scan Results

scanned 1d ago · by rust-scanner

Static analysis flagged 17 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedTelemetryUrlStrings
Manifest
NoLicense
scanned 6 file(s), 2.46 MB of source, external domains: 127.0.0.1, api.ai, api.hicap.ai, api.openai.com, data.cline.bot, github.com, inference.baseten.co, inference.poolside.ai, models.dev

Source & flagged code

8 flagged · loading source
dist/index.jsView file
1import{createRequire as If}from"node:module";var yf=Object.defineProperty;var hf=($)=>$;function kf($,W){this[$]=hf.bind(null,W)}var D9=($,W)=>{for(var Q in W)yf($,Q,{get:W[Q],enum... L2: `,"utf8"),pD()}function BQ(){return z0().telemetryOptOut}function aD($,W={}){R1({...z0(),telemetryOptOut:$},W)}function sD(){return z0().autoUpdateEnabled}function oD($,W={}){R1({.... L3: `)}function lO($){if(!$||$.length===0)return[];let W=[];for(let Q of $){let Z=pO(Q);if(Z)W.push(Z)}return W}function pO($){let W=$.trim();if(!W)return;let Q=W.match(/^data:([^;,]+)... L4: `),J}finally{E5.delete($.lockDir),WM($)}}function w1($,W,Q={}){let Z=QM($,Q);return nV(Z,$,W)}async function w5($,W,Q={}){let Z=await ZM($,Q);return nV(Z,$,W)}function JM($){let W=... L5: <html lang="en"> ... L44: </body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}return W}async functi...
Critical
Credential Exfiltration

Source appears to send environment or credential material to an external endpoint.

dist/index.jsView on unpkg · L1
1Trigger-reachable chain: manifest.main -> dist/index.js L1: import{createRequire as If}from"node:module";var yf=Object.defineProperty;var hf=($)=>$;function kf($,W){this[$]=hf.bind(null,W)}var D9=($,W)=>{for(var Q in W)yf($,Q,{get:W[Q],enum... L2: `,"utf8"),pD()}function BQ(){return z0().telemetryOptOut}function aD($,W={}){R1({...z0(),telemetryOptOut:$},W)}function sD(){return z0().autoUpdateEnabled}function oD($,W={}){R1({.... L3: `)}function lO($){if(!$||$.length===0)return[];let W=[];for(let Q of $){let Z=pO(Q);if(Z)W.push(Z)}return W}function pO($){let W=$.trim();if(!W)return;let Q=W.match(/^data:([^;,]+)... L4: `),J}finally{E5.delete($.lockDir),WM($)}}function w1($,W,Q={}){let Z=QM($,Q);return nV(Z,$,W)}async function w5($,W,Q={}){let Z=await ZM($,Q);return nV(Z,$,W)}function JM($){let W=... L5: <html lang="en"> ... L44: </body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}…
Critical
Trigger Reachable Dangerous Capability

A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.

dist/index.jsView on unpkg · L1
44</body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}return W}async functi...
High
Child Process

Package source references child process execution.

dist/index.jsView on unpkg · L44
44</body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}return W}async functi...
High
Shell

Package source references shell execution.

dist/index.jsView on unpkg · L44
44</body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}return W}async functi...
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/index.jsView on unpkg · L44
44</body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}return W}async functi...
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/index.jsView on unpkg · L44
3`)}function lO($){if(!$||$.length===0)return[];let W=[];for(let Q of $){let Z=pO(Q);if(Z)W.push(Z)}return W}function pO($){let W=$.trim();if(!W)return;let Q=W.match(/^data:([^;,]+)... L4: `),J}finally{E5.delete($.lockDir),WM($)}}function w1($,W,Q={}){let Z=QM($,Q);return nV(Z,$,W)}async function w5($,W,Q={}){let Z=await ZM($,Q);return nV(Z,$,W)}function JM($){let W=... L5: <html lang="en">
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index.jsView on unpkg · L3
1import{createRequire as If}from"node:module";var yf=Object.defineProperty;var hf=($)=>$;function kf($,W){this[$]=hf.bind(null,W)}var D9=($,W)=>{for(var Q in W)yf($,Q,{get:W[Q],enum... L2: `,"utf8"),pD()}function BQ(){return z0().telemetryOptOut}function aD($,W={}){R1({...z0(),telemetryOptOut:$},W)}function sD(){return z0().autoUpdateEnabled}function oD($,W={}){R1({.... L3: `)}function lO($){if(!$||$.length===0)return[];let W=[];for(let Q of $){let Z=pO(Q);if(Z)W.push(Z)}return W}function pO($){let W=$.trim();if(!W)return;let Q=W.match(/^data:([^;,]+)... L4: `),J}finally{E5.delete($.lockDir),WM($)}}function w1($,W,Q={}){let Z=QM($,Q);return nV(Z,$,W)}async function w5($,W,Q={}){let Z=await ZM($,Q);return nV(Z,$,W)}function JM($){let W=... L5: <html lang="en"> ... L44: </body> L45: </html>`;function jj($){let W="";for(let Q=0;Q<$.length;Q+=1)W+=String.fromCharCode($[Q]??0);return btoa(W).replace(/\+/g,"-").replace(/\//g,"_").replace(/=+$/g,"")}async function ... L46: `)}}var qQ=x_();function MQ($,W,Q){if(typeof $==="number"&&$>0)return $;if(Q){let Z=process.env[Q];if(Z){let J=Number(Z);if(Number.isInteger(J)&&J>0)return J}}return W}async functi...
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/index.jsView on unpkg · L1

Findings

2 Critical4 High4 Medium7 Low
CriticalCredential Exfiltrationdist/index.js
CriticalTrigger Reachable Dangerous Capabilitydist/index.js
HighChild Processdist/index.js
HighShelldist/index.js
HighSame File Env Network Executiondist/index.js
HighCommand Output Exfiltrationdist/index.js
MediumDynamic Requiredist/index.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowWeak Cryptodist/index.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings
LowNo License