registry  /  anon-pi  /  0.12.0

anon-pi@0.12.0

⚠ Under review

Launch pi inside a netcage: anonymized web egress through a socks5h proxy, one direct hole for a local model, seeded pi config on the host.

Static Scan Results

scanned 20h ago · by rust-scanner

Static analysis flagged 11 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
CopyleftLicense
scanned 6 file(s), 407 KB of source, external domains: github.com

Source & flagged code

4 flagged · loading source
dist/cli.jsView file
14import { readSync } from 'node:fs'; L15: import { spawnSync, execFileSync } from 'node:child_process'; L16: import { join, dirname, resolve } from 'node:path';
High
Child Process

Package source references child process execution.

dist/cli.jsView on unpkg · L14
1577} L1578: /** Minimal POSIX single-quote shell-quoting for a token embedded in `sh -c`. */ L1579: function shQuote(s) {
High
Shell

Package source references shell execution.

dist/cli.jsView on unpkg · L1577
1038if (chosen === undefined || chosen === '') { L1039: process.stdout.write(' Please pick a listed number or enter a host:port.\n'); L1040: continue; ... L1048: process.stderr.write('anon-pi: `netcage` not found on PATH, cannot verify the exit IP. Install\n' + L1049: 'it first (https://github.com/wighawag/netcage). Linux only.\n'); L1050: return undefined; L1051: } L1052: const verify = spawnSync('netcage', ['verify', '--proxy', url], { L1053: encoding: 'utf8',
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/cli.jsView on unpkg · L1038
dist/anon-pi.jsView file
matchType = previous_version_dangerous_delta matchedPackage = anon-pi@0.11.1 matchedIdentity = npm:YW5vbi1waQ:0.11.1 similarity = 0.500 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/anon-pi.jsView on unpkg

Findings

1 Critical3 High2 Medium5 Low
CriticalPrevious Version Dangerous Deltadist/anon-pi.js
HighChild Processdist/cli.js
HighShelldist/cli.js
HighCommand Output Exfiltrationdist/cli.js
MediumNetwork
MediumEnvironment Vars
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowCopyleft License