registry  /  cowork-flow  /  0.0.39

cowork-flow@0.0.39

CLI for installing and maintaining cowork-flow collaboration templates.

Static Scan Results

scanned 5h ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 6 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemShell
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 14 file(s), 66.6 KB of source

Source & flagged code

2 flagged · loading source
template/.cowork-flow/scripts/run.pyView file
path = template/.cowork-flow/scripts/run.py kind = payload_in_excluded_dir sizeBytes = 4869 magicHex = [redacted]
High
Payload In Excluded Dir

Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.

template/.cowork-flow/scripts/run.pyView on unpkg
path = template/.cowork-flow/scripts/run.py kind = build_helper sizeBytes = 4869 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

template/.cowork-flow/scripts/run.pyView on unpkg

Findings

1 High3 Medium2 Low
HighPayload In Excluded Dirtemplate/.cowork-flow/scripts/run.py
MediumEnvironment Vars
MediumShips Build Helpertemplate/.cowork-flow/scripts/run.py
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem