registry  /  cascade-ai  /  0.17.0

cascade-ai@0.17.0

⚠ Under review

Multi-tier AI orchestration CLI — T1/T2/T3 hierarchical agent system

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 16 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 9 file(s), 3.10 MB of source, external domains: 127.0.0.1, api.anthropic.com, api.github.com, api.groq.com, api.search.brave.com, api.tavily.com, app.posthog.com, generativelanguage.googleapis.com, gitlab.com, lite.duckduckgo.com, openrouter.ai, raw.githubusercontent.com, react.dev, reactflow.dev, www.w3.org
Oversized source lightweight scan
dist/desktop-core.cjs8.37 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsCryptoShellHighEntropyStringsUrlStrings127.0.0.1

Source & flagged code

7 flagged · loading source
dist/index.jsView file
18import ignoreFactory__default from 'ignore'; L19: import { exec, execFile, execSync } from 'child_process'; L20: import { promisify } from 'util';
High
Child Process

Package source references child process execution.

dist/index.jsView on unpkg · L18
4383const { promisify: promisify4 } = await import('util'); L4384: const execAsync2 = promisify4(exec2); L4385: for (const artifactPath of artifactPaths) {
High
Shell

Package source references shell execution.

dist/index.jsView on unpkg · L4383
4381const issues = []; L4382: const { exec: exec2 } = await import('child_process'); L4383: const { promisify: promisify4 } = await import('util');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index.jsView on unpkg · L4381
dist/index.cjsView file
12Cross-file remote execution chain: dist/index.cjs spawns dist/index.js; helper contains network access plus dynamic code execution. L12: var genai = require('@google/genai'); L13: var dns = require('dns'); L14: var http = require('http'); ... L19: var ignoreFactory = require('ignore'); L20: var child_process = require('child_process'); L21: var util = require('util'); ... L160: const [ivHex, authTagHex, encryptedHex] = parts; L161: const iv = Buffer.from(ivHex, "hex"); L162: const authTag = Buffer.from(authTagHex, "hex"); ... L821: type: "image", L822: source: { type: "base64", media_type: img.mimeType, data: img.data } L823: };
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dist/index.cjsView on unpkg · L12
completions/cascade.fishView file
path = completions/cascade.fish kind = build_helper sizeBytes = 1023 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

completions/cascade.fishView on unpkg
dist/desktop-core.cjsView file
path = dist/desktop-core.cjs kind = oversized_source_file sizeBytes = 8781751 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/desktop-core.cjsView on unpkg
dist/cli.jsView file
matchType = previous_version_dangerous_delta matchedPackage = cascade-ai@0.12.24 matchedIdentity = npm:Y2FzY2FkZS1haQ:0.12.24 similarity = 0.500 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/cli.jsView on unpkg

Findings

1 Critical4 High5 Medium6 Low
CriticalPrevious Version Dangerous Deltadist/cli.js
HighChild Processdist/index.js
HighShelldist/index.js
HighCross File Remote Execution Contextdist/index.cjs
HighOversized Source Filedist/desktop-core.cjs
MediumDynamic Requiredist/index.js
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helpercompletions/cascade.fish
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings