registry  /  @yemi33/minions  /  0.1.2314

@yemi33/minions@0.1.2314

⚠ Under review

Multi-agent AI dev team that runs from ~/.minions/ — five autonomous agents share a single engine, dashboard, and knowledge base

Static Scan Results

scanned 6d ago · by rust-scanner

Static analysis flagged 17 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 165 file(s), 6.00 MB of source, external domains: 127.0.0.1, api.githubcopilot.com, claude.ai, cli.github.com, dev.azure.com, git-scm.com, github.com, icy-water-0224cc51e.2.azurestaticapps.net, maestro.mobile.dev, www.apple.com, www.w3.org

Source & flagged code

9 flagged · loading source
minions.jsView file
17const readline = require('readline'); L18: const { execSync } = require('child_process'); L19: const shared = require('./engine/shared');
High
Child Process

Package source references child process execution.

minions.jsView on unpkg · L17
14L15: const fs = require('fs'); L16: const path = require('path');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

minions.jsView on unpkg · L14
bin/minions.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @yemi33/minions@0.1.2303 matchedIdentity = npm:QHllbWkzMy9taW5pb25z:0.1.2303 similarity = 0.800 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

bin/minions.jsView on unpkg
280if (process.platform === 'win32') { L281: // Use PowerShell Get-CimInstance (works on Win11 where wmic is removed) L282: let out;
High
Shell

Package source references shell execution.

bin/minions.jsView on unpkg · L280
46if (opts.includes('--experimental-sqlite')) return; L47: if (process.env.MINIONS_FORCE_JSON === '1') return; // explicit opt-out L48: const { spawnSync } = require('child_process'); L49: const nextOpts = (opts + ' --experimental-sqlite').trim(); ... L60: const os = require('os'); L61: const net = require('net'); L62: const { spawn, spawnSync, execSync } = require('child_process');
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

bin/minions.jsView on unpkg · L46
61const net = require('net'); L62: const { spawn, spawnSync, execSync } = require('child_process'); L63: ... L69: // MINIONS_HOME at PKG_ROOT and routes the dashboard onto this port so a dev L70: // checkout coexists with a global npm install on the normal port (7331). L71: const DEFAULT_DEV_DASH_PORT = 7332;
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

bin/minions.jsView on unpkg · L61
engine/small-state-store.jsView file
36catch { return null; } L37: try { return JSON.parse(raw); } L38: catch (e) {
Low
Weak Crypto

Package source references weak cryptographic algorithms.

engine/small-state-store.jsView on unpkg · L36
engine/watchdog.jsView file
29// L30: // Cross-platform note: install/uninstall/status branch on process.platform. L31: // Each platform's helper is self-contained so unit tests can stub spawnSync. ... L35: const os = require('os'); L36: const { spawn, spawnSync } = require('child_process'); L37: ... L79: try { L80: const obj = JSON.parse(fs.readFileSync(watchdogSpawnBeaconPath(minionsHome), 'utf8')); L81: const ts = obj && Number(obj.ts); ... L122: * Probe engine + dashboard and recover if needed. Always resolves (never L123: * throws). Returns { healthy, action, exitCode? } describing what was done. L124: *
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

engine/watchdog.jsView on unpkg · L29
dashboard.jsView file
4Cross-file remote execution chain: dashboard.js spawns dashboard/js/state.js; helper contains network access plus dynamic code execution. L4: * Run: node .minions/dashboard.js L5: * Opens: http://localhost:7331 L6: */ ... L15: // (Load-reduction audit 2026-06-24.) L16: if (!process.env.UV_THREADPOOL_SIZE) process.env.UV_THREADPOOL_SIZE = '16'; L17: ... L32: const _dashboardVersion = { L33: codeVersion: (() => { try { return require('./package.json').version; } catch {} try { return require('@yemi33/minions/package.json').version; } catch {} return null; })(), L34: codeCommit: (() => { try { return require('child_process').execSync('git rev-parse --short HEAD', { cwd: __dirname, encoding: 'utf8', timeout: 5000, windowsHide: true }).trim(); } ... L35: startedAt: new Date().toISOString(), ... L81: // cooldowns.json have ballooned past ENGINE_DEFAULTS.maxStateFileBytes. Without L82: // this, V8 silently OOMs on JSON.parse(~1 GB) and the operator has no hint as to
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dashboard.jsView on unpkg · L4

Findings

1 Critical5 High5 Medium6 Low
CriticalPrevious Version Dangerous Deltabin/minions.js
HighChild Processminions.js
HighShellbin/minions.js
HighSame File Env Network Executionbin/minions.js
HighCross File Remote Execution Contextdashboard.js
HighRuntime Package Installbin/minions.js
MediumDynamic Requireminions.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistenceengine/watchdog.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowWeak Cryptoengine/small-state-store.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings