registry  /  athena-agent-launcher  /  0.3.4

athena-agent-launcher@0.3.4

Run an Athena-configured agent locally. Resolves runtime + bindings from the Athena control plane and spawns the correct agent binary (Anthropic SDK, OpenClaw, or Hermes).

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 4 file(s), 52.0 KB of source, external domains: 0.0.0.0, 127.0.0.1, athena-v2-pi.vercel.app, hermes-agent.nousresearch.com

Source & flagged code

4 flagged · loading source
bin/launcher.mjsView file
11L12: import { spawn } from "node:child_process"; L13: import { readFileSync, existsSync, mkdirSync, writeFileSync, chmodSync } from "node:fs";
High
Child Process

Package source references child process execution.

bin/launcher.mjsView on unpkg · L11
194c = isWin L195: ? // Native Windows installer (PowerShell). Hermes' CLI + ACP run L196: // natively; only its own dashboard pane needs WSL2, which we don't use.
High
Shell

Package source references shell execution.

bin/launcher.mjsView on unpkg · L194
213// user only ever sees Athena's UX. L214: spawn( L215: "bash", ... L217: "-c", L218: "curl -fsSL https://hermes-agent.nousresearch.com/install.sh | bash -s -- --skip-setup", L219: ], ... L228: if (code !== 0) { L229: process.stderr.write( L230: "[athena-agent] Hermes install failed. On Windows you can also install it manually\n" +
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

bin/launcher.mjsView on unpkg · L213
11L12: import { spawn } from "node:child_process"; L13: import { readFileSync, existsSync, mkdirSync, writeFileSync, chmodSync } from "node:fs"; ... L19: L20: const DEFAULT_BASE_URL = "https://athena-v2-pi.vercel.app"; L21: ... L36: function loadCredsFile() { L37: const p = join(homedir(), ".athena", "credentials.json"); L38: if (!existsSync(p)) return {}; L39: try { L40: return JSON.parse(readFileSync(p, "utf8")); L41: } catch {
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

bin/launcher.mjsView on unpkg · L11

Findings

4 High3 Medium3 Low
HighChild Processbin/launcher.mjs
HighShellbin/launcher.mjs
HighCommand Output Exfiltrationbin/launcher.mjs
HighSandbox Evasion Gated Capabilitybin/launcher.mjs
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings