registry  /  bosia  /  0.8.5

bosia@0.8.5

A fast, batteries-included fullstack framework — SSR · Svelte 5 Runes · Bun · ElysiaJS. File-based routing No Node.js, no Vite, no adapters.

AI Security Review

scanned 1d ago · by lpm-firewall-ai

No confirmed malicious attack surface was found. The risky primitives are framework-aligned runtime CLI/dev-server behavior, not install-time execution.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source
Trigger
User runs bosia CLI commands such as dev, add, feat, create, build, start, or test.
Impact
Project files and package.json may be modified when user requests scaffolding/add commands; dev command spawns local Bun build/server processes.
Mechanism
user-invoked scaffolding, registry fetch/write, package install, and dev-server subprocess management
Rationale
Direct inspection shows no lifecycle hook or import-time payload; network, shell, dynamic require, and package installation are tied to explicit framework CLI actions and package-aligned registry/dev workflows. No evidence of credential theft, exfiltration, persistence, destructive behavior, or foreign AI-agent control hijack was found.
Evidence
package.jsonsrc/cli/index.tssrc/cli/registry.tssrc/core/dev.tssrc/core/plugin.ts.bosia/devsrc/libsrc/app.cssbosia.json
Network endpoints1
raw.githubusercontent.com/bosapi/bosia/main/registry

Decision evidence

public snapshot
AI called this Clean at 90.0% confidence as Benign with low false-positive risk.
Evidence for block
    Evidence against
    • package.json has no npm lifecycle hooks; bin is user-invoked src/cli/index.ts
    • src/core/dev.ts child_process use is dev-server build/start/restart under bosia dev
    • src/cli/registry.ts fetches package registry assets from bosapi GitHub and writes requested project files
    • src/cli/registry.ts bun add only installs dependencies declared by selected registry feature/component
    • src/core/plugin.ts dynamic require resolves Svelte from app dependencies during Bun build
    • No credential harvesting, exfiltration, persistence, or AI-agent control-surface writes found
    Behavioral surface
    Source
    ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
    Supply chain
    HighEntropyStringsUrlStrings
    Manifest
    WildcardDependency
    scanned 93 file(s), 444 KB of source, external domains: fonts.googleapis.com, github.com, raw.githubusercontent.com

    Source & flagged code

    4 flagged · loading source
    src/core/dev.tsView file
    matchType = previous_version_dangerous_delta matchedPackage = bosia@0.8.3 matchedIdentity = npm:Ym9zaWE:0.8.3 similarity = 0.875 summary = stored previous version shares package body but lacks this dangerous source file
    Critical
    Previous Version Dangerous Delta

    This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

    src/core/dev.tsView on unpkg
    126console.log("🏗️ Building..."); L127: const proc = spawn(["bun", "run", BUILD_SCRIPT], { L128: stdout: "inherit",
    High
    Child Process

    Package source references child process execution.

    src/core/dev.tsView on unpkg · L126
    src/core/plugin.tsView file
    13name: "bosia-resolver", L14: setup(build: import("bun").PluginBuilder) { L15: // bosia:routes → .bosia/routes.client.ts (browser) or .bosia/routes.ts (server)
    Medium
    Dynamic Require

    Package source references dynamic require/import behavior.

    src/core/plugin.tsView on unpkg · L13
    src/cli/registry.tsView file
    184L185: /** Run `bun add` for deps and optionally `bun add --dev` for devDeps. */ L186: export async function bunAdd( ... L193: console.log(`\n📥 npm: ${packages.join(", ")}`); L194: const proc = spawn(["bun", "add", ...packages], { L195: stdout: "inherit",
    High
    Runtime Package Install

    Package source invokes a package manager install command at runtime.

    src/cli/registry.tsView on unpkg · L184

    Findings

    1 Critical3 High5 Medium4 Low
    CriticalPrevious Version Dangerous Deltasrc/core/dev.ts
    HighChild Processsrc/core/dev.ts
    HighShell
    HighRuntime Package Installsrc/cli/registry.ts
    MediumDynamic Requiresrc/core/plugin.ts
    MediumNetwork
    MediumEnvironment Vars
    MediumStructural Risk Force Deep Review
    MediumWildcard Dependency
    LowScripts Present
    LowFilesystem
    LowHigh Entropy Strings
    LowUrl Strings