Loading npm security reports…
Audit where your coding agent's context window and API dollars go.
No confirmed malicious attack surface. The user-invoked CLI locally reads agent session/config files to calculate token and cost reports; source contains no exfiltration or mutation path.
`dist/cli.js` explicitly invokes local transcript auditing.
dist/cli.jsView on unpkg`dist/chunk-MO4Y7IF6.js` reads Claude transcripts and MCP config.
dist/chunk-MO4Y7IF6.jsView on unpkg`dist/Root-T6AZELSZ.js` reads Codex and OpenCode local session data.
dist/Root-T6AZELSZ.jsView on unpkg`dist/cli.js` explicitly invokes local transcript auditing.
dist/cli.jsView on unpkg`dist/chunk-MO4Y7IF6.js` reads Claude transcripts and MCP config.
dist/chunk-MO4Y7IF6.jsView on unpkg`dist/Root-T6AZELSZ.js` reads Codex and OpenCode local session data.
dist/Root-T6AZELSZ.jsView on unpkg