registry  /  easytyga  /  2.2.0

easytyga@2.2.0

Tunnel your local AI to the internet. Secure. One command. Works with Ollama, OpenClaw, vLLM, and any HTTP service.

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
DynamicRequireEnvironmentVars
Supply chain
MinifiedObfuscatedTrivial
ManifestNo manifest risk signals triggered.
scanned 7 file(s), 292 KB of source

Source & flagged code

2 flagged · loading source
bin/cli.jsView file
1#!/usr/bin/env node L2: require('../dist/main');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/cli.jsView on unpkg · L1
dist/logger.jsView file
1(function(_0x1f9abe,_0x1397d9){const _0x5c9c1c=_0x1f9abe();function _0x3e7a77(_0x3c5e6e,_0x2003f6){return a0_0x3bc6(_0x3c5e6e-0x1cd,_0x2003f6);}function _0x1ab2a2(_0x1bc4c7,_0x81aa...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

dist/logger.jsView on unpkg · L1

Findings

2 High3 Medium2 Low
HighObfuscated Payload Loaderdist/logger.js
HighObfuscated
MediumDynamic Requirebin/cli.js
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present