registry  /  @tuned-tensor/local  /  0.1.7

@tuned-tensor/local@0.1.7

⚠ Under review

Local, cloud-independent fine-tuning runner for Tuned Tensor behavior specs.

Static Scan Results

scanned 3d ago · by rust-scanner

Static analysis flagged 8 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
No blocking static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 15 file(s), 134 KB of source, external domains: openrouter.ai

Source & flagged code

3 flagged · loading source
dist/openrouter.jsView file
1export async function openRouterChat(messages, options) { L2: const apiKey = process.env[options.apiKeyEnv]; L3: if (!apiKey) { ... L8: try { L9: const response = await fetch("https://openrouter.ai/api/v1/chat/completions", { L10: method: "POST", ... L17: }, L18: body: JSON.stringify({ L19: model: options.model, ... L25: if (!response.ok) { L26: const text = await response.text().catch(() => ""); L27: throw new Error(`OpenRouter request failed (${response.status}): ${text.slice(0, 500)}`);
High
Credential Exfiltration

Source combines credential-like environment material and outbound requests; review data flow before blocking.

dist/openrouter.jsView on unpkg · L1
training/sft-local/src/train.pyView file
path = training/sft-local/src/train.py kind = build_helper sizeBytes = 14738 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

training/sft-local/src/train.pyView on unpkg
dist/process-training.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @tuned-tensor/local@0.1.2 matchedIdentity = npm:QHR1bmVkLXRlbnNvci9sb2NhbA:0.1.2 similarity = 0.429 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/process-training.jsView on unpkg

Findings

1 Critical1 High3 Medium3 Low
CriticalPrevious Version Dangerous Deltadist/process-training.js
HighCredential Exfiltrationdist/openrouter.js
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helpertraining/sft-local/src/train.py
LowScripts Present
LowFilesystem
LowUrl Strings