registry  /  claude-down  /  0.6.4

claude-down@0.6.4

⚠ Under review

Is claude code down? Probably...

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 8 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
EnvironmentVarsNetworkWebSocket
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 3 file(s), 32.9 KB of source, external domains: claude-down.kjanat.dev, downdetector.com, github.com, status.claude.com

Source & flagged code

3 flagged · loading source
dist/bin/cli.mjsView file
matchType = previous_version_dangerous_delta matchedPackage = claude-down@0.6.3 matchedIdentity = npm:Y2xhdWRlLWRvd24:0.6.3 similarity = 0.667 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/bin/cli.mjsView on unpkg
1#!/usr/bin/env node L2: import{ParseError as e,cli as t,command as n,flag as r,osc8 as i}from"@kjanat/dreamcli";import{createColors as a}from"ansispeck";import{spawn as o,spawnSync as s}from"node:child_pr... L3: `)}if(e.source===`downdetector`){let t=e.summaryText??`No user-reported issues`;return i.push(` ${r(t)}`),i.join(` ... L7: `))}function xe(e,t,n={}){let r=n.leadingBlank===!0?` L8: `:``;t.log(`${r}${I(e,t.isTTY)}`)}function Se(e){if(e.jsonMode||!e.isTTY)return;let t=a(!0),n=t.link(d);e.log(`\n${t.dim(`Watch the live status page: ${n}`)}`)}const L=`/api/v2`,Ce... L9: title: document.title,
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/bin/cli.mjsView on unpkg · L1
1#!/usr/bin/env node L2: import{ParseError as e,cli as t,command as n,flag as r,osc8 as i}from"@kjanat/dreamcli";import{createColors as a}from"ansispeck";import{spawn as o,spawnSync as s}from"node:child_pr... L3: `)}if(e.source===`downdetector`){let t=e.summaryText??`No user-reported issues`;return i.push(` ${r(t)}`),i.join(` ... L7: `))}function xe(e,t,n={}){let r=n.leadingBlank===!0?` L8: `:``;t.log(`${r}${I(e,t.isTTY)}`)}function Se(e){if(e.jsonMode||!e.isTTY)return;let t=a(!0),n=t.link(d);e.log(`\n${t.dim(`Watch the live status page: ${n}`)}`)}const L=`/api/v2`,Ce... L9: title: document.title,
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/bin/cli.mjsView on unpkg · L1

Findings

1 Critical2 High2 Medium3 Low
CriticalPrevious Version Dangerous Deltadist/bin/cli.mjs
HighSame File Env Network Executiondist/bin/cli.mjs
HighCommand Output Exfiltrationdist/bin/cli.mjs
MediumNetwork
MediumEnvironment Vars
LowNon Install Lifecycle Scripts
LowScripts Present
LowUrl Strings