registry  /  @zibby/agent-workflow  /  0.4.35

@zibby/agent-workflow@0.4.35

⚠ Under review

Graph-based AI agent workflow orchestration. Bring your own agent strategies.

Static Scan Results

scanned 5h ago · by rust-scanner

Static analysis flagged 12 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsEvalFilesystemNetwork
Supply chain
HighEntropyStringsMinified
ManifestNo manifest risk signals triggered.
scanned 22 file(s), 236 KB of source

Source & flagged code

6 flagged · loading source
dist/graph.jsView file
33L34: ${i}`);let a=r(),u=a.cwd||process.cwd(),p=a.sessionPath;try{if(p){let c=Et(p,Z);if(Xt(c)){let y=JSON.parse(qt(c,"utf-8"));y.currentNode=this.name,It(c,JSON.stringify(y,null,2),"utf... L35:
High
Child Process

Package source references child process execution.

dist/graph.jsView on unpkg · L33
20`?(n+=u,t.lineStart=!0,t.col=0,t.inEsc=!1):u==="\x1B"?(t.inEsc=!0,n+=u):t.inEsc?(n+=u,(u>="A"&&u<="Z"||u>="a"&&u<="z")&&(t.inEsc=!1)):(t.col++,n+=u,t.col>=i&&(n+=` L21: ${Wt}`,t.col=Gt))}return o(n,r,s)}}var ht=class{constructor(){this._currentNode=null,this._origStdoutWrite=null,this._origStderrWrite=null,this._emitWorkflowGraphMarkers=String(pro... L22: `),process.stdout.write=this._origStdoutWrite),this._origStderrWrite&&(this._errState&&!this._errState.lineStart&&this._origStderrWrite(` ... L33: L34: ${i}`);let a=r(),u=a.cwd||process.cwd(),p=a.sessionPath;try{if(p){let c=Et(p,Z);if(Xt(c)){let y=JSON.parse(qt(c,"utf-8"));y.currentNode=this.name,It(c,JSON.stringify(y,null,2),"utf... L35:
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/graph.jsView on unpkg · L20
18${e.join(` L19: `)}`);return t}};V();import{writeFileSync as It,readFileSync as qt,existsSync as Xt,mkdirSync as Ge}from"node:fs";import{join as Et,dirname as Fe}from"node:path";import O from"chal... L20: `?(n+=u,t.lineStart=!0,t.col=0,t.inEsc=!1):u==="\x1B"?(t.inEsc=!0,n+=u):t.inEsc?(n+=u,(u>="A"&&u<="Z"||u>="a"&&u<="z")&&(t.inEsc=!1)):(t.col++,n+=u,t.col>=i&&(n+=` ... L24: `)}_emitGraphLogMarker(t){if(!this._emitWorkflowGraphMarkers)return;let e=`${Pe}${JSON.stringify(t)} L25: `;this._origStdoutWrite?this._origStdoutWrite(e):process.stdout.write(e)}_writeDot(t,e){this._origStdoutWrite?(this._outState&&!this._outState.lineStart&&(this._origStdoutWrite(` L26: `),this._outState.lineStart=!0,this._outState.col=0),this._origStdoutWrite(`${t} ${e} ... L33: L34: ${i}`);let a=r(),u=a.cwd||process.cwd(),p=a.sessionPath;try{if(p){let c=Et(p,Z);if(Xt(c)){let y=JSON.parse(qt(c,"utf-8"));y.currentNode=this.name,It(c,JSON.stringify(y,null,2),"utf... L35:
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/graph.jsView on unpkg · L18
33L34: ${i}`);let a=r(),u=a.cwd||process.cwd(),p=a.sessionPath;try{if(p){let c=Et(p,Z);if(Xt(c)){let y=JSON.parse(qt(c,"utf-8"));y.currentNode=this.name,It(c,JSON.stringify(y,null,2),"utf... L35:
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/graph.jsView on unpkg · L33
dist/graph-compiler.jsView file
49L50: `)}`}de();W();var Bo={};function At(o,e){if(Array.isArray(e))return Tt(e);let t=Bo[o];return!t||t.length===0?null:Tt(t)}function Tt(o){if(!Array.isArray(o)||o.length===0)return nul...
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/graph-compiler.jsView on unpkg · L49
dist/in-process-subgraph.jsView file
matchType = previous_version_dangerous_delta matchedPackage = @zibby/agent-workflow@0.4.27 matchedIdentity = npm:QHppYmJ5L2FnZW50LXdvcmtmbG93:0.4.27 similarity = 0.571 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/in-process-subgraph.jsView on unpkg

Findings

1 Critical3 High4 Medium4 Low
CriticalPrevious Version Dangerous Deltadist/in-process-subgraph.js
HighChild Processdist/graph.js
HighSame File Env Network Executiondist/graph.js
HighCommand Output Exfiltrationdist/graph.js
MediumDynamic Requiredist/graph.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvaldist/graph-compiler.js
LowFilesystem
LowHigh Entropy Strings