registry  /  agentiqa  /  1.1.31

agentiqa@1.1.31

⚠ Under review

AI-powered testing for web and mobile apps

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 20 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStringsMinifiedTelemetryUrlStrings
Manifest
NoLicense
scanned 3 file(s), 1.45 MB of source, external domains: agentiqa.com, ai-gateway.vercel.sh, ai-sdk.dev, api.openai.com, api.vercel.com, deb.nodesource.com, example.com, generativelanguage.googleapis.com, google.aip.dev, json-schema.org, vercel.com, your-app.com

Source & flagged code

11 flagged · loading source
package.jsonView file
scripts.postinstall = node scripts/postinstall.cjs
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.preinstall = node scripts/preinstall.cjs
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
scripts.postinstall = node scripts/postinstall.cjs
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
dist/cli.jsView file
1#!/usr/bin/env node L2: var UR=Object.create;var vf=Object.defineProperty;var FR=Object.getOwnPropertyDescriptor;var BR=Object.getOwnPropertyNames;var qR=Object.getPrototypeOf,VR=Object.prototype.hasOwnPr... L3: ${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics... ... L232: Current URL: ${g.url}`)+` L233: OS: ${p}${_}`),{env:g,contextText:E}}var xf=["google.com","youtube.com","claude.ai","chatgpt.com","openai.com","gemini.google.com","bing.com","duckduckgo.com","wikipedia.org","face... L234: This page has a large canvas-rendered surface (Miro/Figma/spreadsheet-class). Some UI is drawn on a <canvas> with little DOM behind it, but the chrome around it (toolbars, dialogs,... ... L186
Critical
Credential Exfiltration

Source appears to send environment or credential material to an external endpoint.

dist/cli.jsView on unpkg · L1
1Trigger-reachable chain: manifest.bin -> dist/cli.js L1: #!/usr/bin/env node L2: var UR=Object.create;var vf=Object.defineProperty;var FR=Object.getOwnPropertyDescriptor;var BR=Object.getOwnPropertyNames;var qR=Object.getPrototypeOf,VR=Object.prototype.hasOwnPr... L3: ${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics... ... L232: Current URL: ${g.url}`)+` L233: OS: ${p}${_}`),{env:g,contextText:E}}var xf=["google.com","youtube.com","claude.ai","chatgpt.com","openai.com","gemini.google.com","bing.com","duckduckgo.com","wikipedia.org","face... L234: This page has a large canvas-rendered surface (Miro/Figma/spreadsheet-class). Some UI is drawn on a <canvas> with little DOM behind it, bu…
Critical
Trigger Reachable Dangerous Capability

A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.

dist/cli.jsView on unpkg · L1
3${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics...
High
Child Process

Package source references child process execution.

dist/cli.jsView on unpkg · L3
1#!/usr/bin/env node L2: var UR=Object.create;var vf=Object.defineProperty;var FR=Object.getOwnPropertyDescriptor;var BR=Object.getOwnPropertyNames;var qR=Object.getPrototypeOf,VR=Object.prototype.hasOwnPr... L3: ${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics...
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/cli.jsView on unpkg · L1
1#!/usr/bin/env node L2: var UR=Object.create;var vf=Object.defineProperty;var FR=Object.getOwnPropertyDescriptor;var BR=Object.getOwnPropertyNames;var qR=Object.getPrototypeOf,VR=Object.prototype.hasOwnPr... L3: ${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics...
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/cli.jsView on unpkg · L1
1#!/usr/bin/env node L2: var UR=Object.create;var vf=Object.defineProperty;var FR=Object.getOwnPropertyDescriptor;var BR=Object.getOwnPropertyNames;var qR=Object.getPrototypeOf,VR=Object.prototype.hasOwnPr... L3: ${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics... ... L232: Current URL: ${g.url}`)+` L233: OS: ${p}${_}`),{env:g,contextText:E}}var xf=["google.com","youtube.com","claude.ai","chatgpt.com","openai.com","gemini.google.com","bing.com","duckduckgo.com","wikipedia.org","face... L234: This page has a large canvas-rendered surface (Miro/Figma/spreadsheet-class). Some UI is drawn on a <canvas> with little DOM behind it, but the chrome around it (toolbars, dialogs,... ... L186
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/cli.jsView on unpkg · L1
1#!/usr/bin/env node L2: var UR=Object.create;var vf=Object.defineProperty;var FR=Object.getOwnPropertyDescriptor;var BR=Object.getOwnPropertyNames;var qR=Object.getPrototypeOf,VR=Object.prototype.hasOwnPr... L3: ${r.message}`),n?new bM.VercelOidcTokenError(n):r}return t}function Zd(){let t=(0,vM.getContext)().headers?.["x-vercel-oidc-token"]??process.env.VERCEL_OIDC_TOKEN;if(!t)throw new E... L4: `)}}}import{spawn as ZK}from"node:child_process";import{mkdirSync as e3,writeFileSync as t3,existsSync as r3,statSync as n3}from"node:fs";import{tmpdir as s3}from"node:os";import g... L5: `))}async uploadScreenshot(e,r){let n=on("img"),s=this.sessions.get(e)??null,o=JSON.stringify({sessionId:e,eventId:n,imageBase64:r}),i=a=>this.fetchFn(`${this.apiUrl}/api/analytics... ... L379: L380: This is a client-side timeout. To resolve this, increase your timeout configuration: https://vercel.com/docs/ai-gateway/capabilities/video-generation#extending-timeouts-for-node.js... L381:
High
Remote Agent Bridge

Source exposes local file and command tools to a remote model endpoint.

dist/cli.jsView on unpkg · L1
scripts/postinstall.cjsView file
1Cross-file remote execution chain: scripts/postinstall.cjs spawns dist/cli.js; helper contains network access plus dynamic code execution. L1: const path = require('node:path') L2: const { spawnSync } = require('node:child_process') L3: L4: try { L5: const cli = path.join(path.dirname(require.resolve('playwright/package.json')), 'cli.js') L6: const result = spawnSync(process.execPath, [cli, 'install', 'chromium'], { stdio: 'inherit' }) ... L10: } catch (error) { L11: process.stderr.write(`[agentiqa] warning: Chromium prefetch failed; it will be retried on first run (${error.message})\n`) L12: }
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

scripts/postinstall.cjsView on unpkg · L1

Findings

2 Critical7 High5 Medium6 Low
CriticalCredential Exfiltrationdist/cli.js
CriticalTrigger Reachable Dangerous Capabilitydist/cli.js
HighInstall Time Lifecycle Scriptspackage.json
HighChild Processdist/cli.js
HighSame File Env Network Executiondist/cli.js
HighCommand Output Exfiltrationdist/cli.js
HighSandbox Evasion Gated Capabilitydist/cli.js
HighRemote Agent Bridgedist/cli.js
HighCross File Remote Execution Contextscripts/postinstall.cjs
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings
LowNo License