registry  /  @whalent/agent-core  /  0.3.202

@whalent/agent-core@0.3.202

Core runtime for Whalent Agent

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
DynamicRequireEnvironmentVars
Supply chain
HighEntropyStringsMinifiedObfuscatedUrlStrings
Manifest
NoLicense
scanned 1 file(s), 256 KB of source, external domains: registry.npmjs.org
Oversized source lightweight scan
dist/index.cjs4.50 MB file, sampled 256 KB
EnvironmentVarsDynamicRequireObfuscatedHighEntropyStringsMinified

Source & flagged code

3 flagged · loading source
package.jsonView file
scripts.preinstall = node scripts/preinstall-check.cjs
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
dist/index.cjsView file
path = dist/index.cjs kind = oversized_source_file sizeBytes = 4716990 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/index.cjsView on unpkg
path = dist/index.cjs kind = oversized_cli_entrypoint sizeBytes = 4716990 magicHex = [redacted]
Medium
Oversized Cli Entrypoint

Package contains an oversized executable-looking CLI entrypoint.

dist/index.cjsView on unpkg

Findings

3 High4 Medium4 Low
HighInstall Time Lifecycle Scriptspackage.json
HighObfuscated
HighOversized Source Filedist/index.cjs
MediumDynamic Require
MediumEnvironment Vars
MediumOversized Cli Entrypointdist/index.cjs
MediumStructural Risk Force Deep Review
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings
LowNo License