registry  /  @vdart-code/ai  /  1.18.3

@vdart-code/ai@1.18.3

⚠ Under review

To install dependencies:

Static Scan Results

scanned 4h ago · by rust-scanner

Static analysis flagged 13 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 359 file(s), 2.55 MB of source, external domains: 127.0.0.1, accounts.x.ai, api.digitalocean.com, api.github.com, api.githubcopilot.com, api.openai.com, api.opencode.ai, api.releases.hashicorp.com, app.opencode.ai, auth.openai.com, auth.x.ai, chatgpt.com, cloud.digitalocean.com, community.chocolatey.org, company.ghe.com, console.opencode.ai, databay.com, dev.opencode.ai, docs.github.com, download-cdn.jetbrains.com, example.com, formulae.brew.sh, github.com, gitlab.com, inference.do-ai.run, mcp.exa.ai, opencode.ai, opencode.internal, opncd.ai, raw.githubusercontent.com, search.parallel.ai, social-cards.sst.dev, vdart-code.ai, vercel.link, www.eclipse.org, www.googleapis.com

Source & flagged code

4 flagged · loading source
src/util/process.tsView file
1import { type ChildProcess } from "child_process" L2: import type { Stream } from "node:stream"
High
Child Process

Package source references child process execution.

src/util/process.tsView on unpkg · L1
src/config/config.tsView file
264yield* Effect.promise(() => L265: import(pathToFileURL(legacy).href, { with: { type: "toml" } }) L266: .then(async (mod) => {
Medium
Dynamic Require

Package source references dynamic require/import behavior.

src/config/config.tsView on unpkg · L264
src/lsp/server.tsView file
1import type { ChildProcessWithoutNullStreams } from "child_process" L2: import path from "path" ... L22: const run = (cmd: string[], opts: Process.RunOptions = {}) => Process.run(cmd, { ...opts, nothrow: true }) L23: const output = (cmd: string[], opts: Process.RunOptions = {}) => Process.text(cmd, { ...opts, nothrow: true }) L24: ... L117: root: NearestRoot( L118: ["package-lock.json", "bun.lockb", "bun.lock", "pnpm-lock.yaml", "yarn.lock"], L119: ["deno.json", "deno.jsonc"], ... L129: env: { L130: ...process.env, L131: }, ... L182: if (flags.disableLspDownload) return
Critical
Command Output Exfiltration

Source executes local commands and sends command output to an external endpoint.

src/lsp/server.tsView on unpkg · L1
1import type { ChildProcessWithoutNullStreams } from "child_process" L2: import path from "path" ... L22: const run = (cmd: string[], opts: Process.RunOptions = {}) => Process.run(cmd, { ...opts, nothrow: true }) L23: const output = (cmd: string[], opts: Process.RunOptions = {}) => Process.text(cmd, { ...opts, nothrow: true }) L24: ... L117: root: NearestRoot( L118: ["package-lock.json", "bun.lockb", "bun.lock", "pnpm-lock.yaml", "yarn.lock"], L119: ["deno.json", "deno.jsonc"], ... L129: env: { L130: ...process.env, L131: }, ... L182: if (flags.disableLspDownload) return
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

src/lsp/server.tsView on unpkg · L1

Findings

1 Critical3 High4 Medium5 Low
CriticalCommand Output Exfiltrationsrc/lsp/server.ts
HighChild Processsrc/util/process.ts
HighShell
HighSandbox Evasion Gated Capabilitysrc/lsp/server.ts
MediumDynamic Requiresrc/config/config.ts
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEval
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings