registry  /  @shumai-one/shumai-agent  /  0.1.9

@shumai-one/shumai-agent@0.1.9

⚠ Under review

AI worker agent for the shumai media workspace

Static Scan Results

scanned 2d ago · by rust-scanner

Static analysis flagged 20 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsMinifiedObfuscatedProtestwareTelemetryUrlStrings
Manifest
NoLicense
scanned 63 file(s), 5.56 MB of source, external domains: 127.0.0.1, 169.254.169.254, ai-gateway.vercel.sh, api.ant-ling.com, api.anthropic.com, api.atlassian.com, api.cerebras.ai, api.cloudflare.com, api.deepseek.com, api.example.com, api.fireworks.ai, api.groq.com, api.individual.githubcopilot.com, api.kimi.com, api.linkedin.com, api.minimax.io, api.minimaxi.com, api.mistral.ai, api.moonshot.ai, api.moonshot.cn, api.openai.com, api.together.ai, api.x.ai, api.xiaomimimo.com, api.z.ai, appleid.apple.com, auth.atlassian.com, baagoe.com, bedrock-runtime.eu-central-1.amazonaws.com, bedrock-runtime.us-east-1.amazonaws.com, better-auth.com, cdn.jsdelivr.net, chatgpt.com, codeload.github.com, developer.mozilla.org, docs.expo.dev, docs.mistral.ai, docs.temporal.io, dotenvx.com, example.com, fast-api.example.com, gateway.ai.cloudflare.com, generativelanguage.googleapis.com, github.com, help.openai.com, integrate.api.nvidia.com, json-schema.org, login.microsoftonline.com, metadata.google.internal, nodejs.org

Source & flagged code

9 flagged · loading source
bin/shumai-agent-app.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @shumai-one/shumai-agent@0.1.6 matchedIdentity = npm:[redacted]:0.1.6 similarity = 1.000 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

bin/shumai-agent-app.jsView on unpkg
1Cross-file remote execution chain: bin/shumai-agent-app.js spawns bin/chunk-4vs22x1t.js; helper contains network access plus dynamic code execution. L1: // @bun L2: import{u as Vo,v as Pc}from"./chunk-c11capf1.js";import"./chunk-cm44rgmn.js";import"./chunk-xg9xscqz.js";import{$ as B4,B as F8,C as QW,D as e9,E as eX,F as Uw,G as Wo,H as QB,I as... L3: `);let Q;while((Q=Ya.exec(w))!=null){let X=Q[1],J=Q[2]||"";J=J.trim();let Z=J[0];if(J=J.replace(/^(['"`])([\s\S]*)\1$/mg,"$2"),Z==='"')J=J.replace(/\\n/g,` L4: `),J=J.replace(/\\r/g,"\r");$[X]=J}return $}function Va(W){W=W||{};let $=PB(W);W.path=$;let w=A4.configDotenv(W);if(!w.parsed){let Z=Error(`MISSING_DATA: Cannot parse ${$} for an u... L5: `)}return Q};mM.decode=function(W,$){if(typeof W!=="string")throw TypeError('"input" must be a string.');if(typeof $!=="string")throw TypeError('"alphabet" must be a string.');var ... ... L16: `+$.substr(Z);else $=$.substr(0,Z)+`\r L17: `+Y+$.substr(Z+1);J=X-Z-1,Z=-1,++X}else if($[X]===" "||$[X]==="\t"||$[X]===",")Z=X;return $}function Bs(W){return W.replace(/^\s+/,"")}});var jJ=W0((ZA0,ST)=>{var RW=c5();fK();cM()... L18: `;J+="Encryption: "+X+`\r ... L994: \r L995: `)}}),$.on("request",async(…
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

bin/shumai-agent-app.jsView on unpkg · L1
973patternName = generic_password severity = medium line = 973 matchedText = `,runtim...(w+`
Medium
Secret Pattern

Package contains a possible secret pattern.

bin/shumai-agent-app.jsView on unpkg · L973
1// @bun L2: import{u as Vo,v as Pc}from"./chunk-c11capf1.js";import"./chunk-cm44rgmn.js";import"./chunk-xg9xscqz.js";import{$ as B4,B as F8,C as QW,D as e9,E as eX,F as Uw,G as Wo,H as QB,I as... L3: `);let Q;while((Q=Ya.exec(w))!=null){let X=Q[1],J=Q[2]||"";J=J.trim();let Z=J[0];if(J=J.replace(/^(['"`])([\s\S]*)\1$/mg,"$2"),Z==='"')J=J.replace(/\\n/g,` L4: `),J=J.replace(/\\r/g,"\r");$[X]=J}return $}function Va(W){W=W||{};let $=PB(W);W.path=$;let w=A4.configDotenv(W);if(!w.parsed){let Z=Error(`MISSING_DATA: Cannot parse ${$} for an u... L5: `)}return Q};mM.decode=function(W,$){if(typeof W!=="string")throw TypeError('"input" must be a string.');if(typeof $!=="string")throw TypeError('"alphabet" must be a string.');var ... ... L16: `+$.substr(Z);else $=$.substr(0,Z)+`\r L17: `+Y+$.substr(Z+1);J=X-Z-1,Z=-1,++X}else if($[X]===" "||$[X]==="\t"||$[X]===",")Z=X;return $}function Bs(W){return W.replace(/^\s+/,"")}});var jJ=W0((ZA0,ST)=>{var RW=c5();fK();cM()... L18: `;J+="Encryption: "+X+`\r ... L994: \r L995: `)}}),$.on("request",async(w,Q)=>{try{let X=new C50(w.url),J=E8(X.hostname),Z=X.port?parseInt(X.port,10):X.protocol==="https:"?443:80;if(!await W.filter(Z,J,w.socket)){Q0(`HTTP
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

bin/shumai-agent-app.jsView on unpkg · L1
1// @bun L2: import{u as Vo,v as Pc}from"./chunk-c11capf1.js";import"./chunk-cm44rgmn.js";import"./chunk-xg9xscqz.js";import{$ as B4,B as F8,C as QW,D as e9,E as eX,F as Uw,G as Wo,H as QB,I as... L3: `);let Q;while((Q=Ya.exec(w))!=null){let X=Q[1],J=Q[2]||"";J=J.trim();let Z=J[0];if(J=J.replace(/^(['"`])([\s\S]*)\1$/mg,"$2"),Z==='"')J=J.replace(/\\n/g,` L4: `),J=J.replace(/\\r/g,"\r");$[X]=J}return $}function Va(W){W=W||{};let $=PB(W);W.path=$;let w=A4.configDotenv(W);if(!w.parsed){let Z=Error(`MISSING_DATA: Cannot parse ${$} for an u... L5: `)}return Q};mM.decode=function(W,$){if(typeof W!=="string")throw TypeError('"input" must be a string.');if(typeof $!=="string")throw TypeError('"alphabet" must be a string.');var ... ... L16: `+$.substr(Z);else $=$.substr(0,Z)+`\r L17: `+Y+$.substr(Z+1);J=X-Z-1,Z=-1,++X}else if($[X]===" "||$[X]==="\t"||$[X]===",")Z=X;return $}function Bs(W){return W.replace(/^\s+/,"")}});var jJ=W0((ZA0,ST)=>{var RW=c5();fK();cM()... L18: `;J+="Encryption: "+X+`\r ... L994: \r L995: `)}}),$.on("request",async(w,Q)=>{try{let X=new C50(w.url),J=E8(X.hostname),Z=X.port?parseInt(X.port,10):X.protocol==="https:"?443:80;if(!await W.filter(Z,J,w.socket)){Q0(`HTTP
Low
Weak Crypto

Package source references weak cryptographic algorithms.

bin/shumai-agent-app.jsView on unpkg · L1
bin/chunk-4vs22x1t.jsView file
24${D} L25: `+await Z.crypto.sha256DigestHex(G),I=await sq(Z.crypto,Z.securityCredentials.secretAccessKey,K,Z.region,Y),P=await e4(Z.crypto,I,T),O=`${SY} Credential=${Z.securityCredentials.acc... L26: To learn more about authentication and Google APIs, visit:
High
Child Process

Package source references child process execution.

bin/chunk-4vs22x1t.jsView on unpkg · L24
13`+I+"}":"{"+P.join(",")+"}",Y=I,D}}if(typeof U$.stringify!=="function")U$.stringify=function(w,F,z){var G;if(Y="",W="",typeof z==="number")for(G=0;G<z;G+=1)W+=" ";else if(typeof z=... L14: `,r:"\r",t:"\t"},J,K=function(I){throw{name:"SyntaxError",message:I,at:Q,text:J}},q=function(I){if(I&&I!==Y)K("Expected '"+I+"' instead of '"+Y+"'");return Y=J.charAt(Q),Q+=1,Y},H=... L15: Supported algorithms are: ... L24: ${D} L25: `+await Z.crypto.sha256DigestHex(G),I=await sq(Z.crypto,Z.securityCredentials.secretAccessKey,K,Z.region,Y),P=await e4(Z.crypto,I,T),O=`${SY} Credential=${Z.securityCredentials.acc... L26: To learn more about authentication and Google APIs, visit:
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

bin/chunk-4vs22x1t.jsView on unpkg · L13
13`+I+"}":"{"+P.join(",")+"}",Y=I,D}}if(typeof U$.stringify!=="function")U$.stringify=function(w,F,z){var G;if(Y="",W="",typeof z==="number")for(G=0;G<z;G+=1)W+=" ";else if(typeof z=... L14: `,r:"\r",t:"\t"},J,K=function(I){throw{name:"SyntaxError",message:I,at:Q,text:J}},q=function(I){if(I&&I!==Y)K("Expected '"+I+"' instead of '"+Y+"'");return Y=J.charAt(Q),Q+=1,Y},H=... L15: Supported algorithms are: ... L24: ${D} L25: `+await Z.crypto.sha256DigestHex(G),I=await sq(Z.crypto,Z.securityCredentials.secretAccessKey,K,Z.region,Y),P=await e4(Z.crypto,I,T),O=`${SY} Credential=${Z.securityCredentials.acc... L26: To learn more about authentication and Google APIs, visit:
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

bin/chunk-4vs22x1t.jsView on unpkg · L13
1// @bun L2: import{kc as I8,lc as b,nc as a}from"./chunk-7mtn96c1.js";var gZ=b((tU,fZ)=>{function O0(Z,$){if(typeof $==="boolean")$={forever:$};if(this._originalTimeouts=JSON.parse(JSON.string... L3: `)||Q,code:W,status:Y},Z.data.error)}return Object.assign({message:Q,code:W,status:Y},Z.data.error)}}return{message:Q,code:Z.status,status:Z.statusText}}}j0.GaxiosError=U8;function... L4: Content-Type: ${W}\r ... L13: `+I+"}":"{"+P.join(",")+"}",Y=I,D}}if(typeof U$.stringify!=="function")U$.stringify=function(w,F,z){var G;if(Y="",W="",typeof z==="number")for(G=0;G<z;G+=1)W+=" ";else if(typeof z=... L14: `,r:"\r",t:"\t"},J,K=function(I){throw{name:"SyntaxError",message:I,at:Q,text:J}},q=function(I){if(I&&I!==Y)K("Expected '"+I+"' instead of '"+Y+"'");return Y=J.charAt(Q),Q+=1,Y},H=... L15: Supported algorithms are: L16: "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "PS256", "PS384", "PS512", "ES256", "ES384", "ES512" and "none".`,s4="secret must be a string or buffer",P4="key must be a str... L17: `});let F=w.join(";"),z=await Z.crypto.sha256DigestHex(Q),G=`${Z.method.toUpperCase()} ... L24: ${D} L25: `+await Z.crypto.sha256DigestHex(G),I=await sq(Z.crypto,Z.securityCredenti
High
Cloud Metadata Access

Source reaches cloud instance metadata or link-local credential endpoints.

bin/chunk-4vs22x1t.jsView on unpkg · L1

Findings

1 Critical6 High6 Medium7 Low
CriticalPrevious Version Dangerous Deltabin/shumai-agent-app.js
HighChild Processbin/chunk-4vs22x1t.js
HighShell
HighSame File Env Network Executionbin/chunk-4vs22x1t.js
HighCommand Output Exfiltrationbin/chunk-4vs22x1t.js
HighCloud Metadata Accessbin/chunk-4vs22x1t.js
HighCross File Remote Execution Contextbin/shumai-agent-app.js
MediumSecret Patternbin/shumai-agent-app.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencebin/shumai-agent-app.js
MediumProtestware
MediumStructural Risk Force Deep Review
LowWeak Cryptobin/shumai-agent-app.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings
LowNo License