registry  /  foliko  /  2.0.9

foliko@2.0.9

⚠ Under review

简约的插件化 Agent 框架

Static Scan Results

scanned 4h ago · by rust-scanner

Static analysis flagged 16 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetwork
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 189 file(s), 1.42 MB of source, external domains: api.anthropic.com, api.deepseek.com, api.example.com, api.github.com, api.ipify.org, api.minimaxi.com, api.openai.com, fcdn.foliko.com, github.com, httpbin.org, raw.githubusercontent.com

Source & flagged code

8 flagged · loading source
plugins/install/index.jsView file
5L6: const { execSync } = require('child_process') L7: const fs = require('fs')
High
Child Process

Package source references child process execution.

plugins/install/index.jsView on unpkg · L5
101// 使用 npm install 安装到指定目录 L102: execSync(`npm install ${packageName} --prefix "${installPath}"`, { L103: stdio: 'inherit',
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

plugins/install/index.jsView on unpkg · L101
plugins/core/workflow/index.jsView file
213this._log.debug(` Executing script step: ${step.name || step.id}`); L214: // 安全警告:使用 new Function() 执行用户脚本存在风险 L215: if (typeof step.script === 'string') {
Low
Eval

Package source references a known benign dynamic code generation pattern.

plugins/core/workflow/index.jsView on unpkg · L213
plugins/tools/index.jsView file
5L6: const path = require('path'); L7: const { Plugin } = require('../../src/plugin/base');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

plugins/tools/index.jsView on unpkg · L5
src/utils/sandbox.jsView file
25Math, L26: JSON: { parse: JSON.parse, stringify: JSON.stringify }, L27: Array: { isArray: Array.isArray, from: Array.from, of: Array.of }, ... L122: console: { log() {}, error() {}, warn() {}, info() {} }, L123: __dirname: '/', L124: __filename: '/workflow.js',
Medium
Unsafe Vm Context

Package source executes code through a VM context API.

src/utils/sandbox.jsView on unpkg · L25
install.shView file
path = install.sh kind = build_helper sizeBytes = 3792 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

install.shView on unpkg
package.jsonView file
Runtime dependency names matching Node built-ins: crypto
High
Node Builtin Dependency Squat

Package declares a runtime dependency whose name matches a Node built-in module.

package.jsonView on unpkg
plugins/core/scheduler/index.jsView file
matchType = previous_version_dangerous_delta matchedPackage = foliko@2.0.7 matchedIdentity = npm:Zm9saWtv:2.0.7 similarity = 0.975 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

plugins/core/scheduler/index.jsView on unpkg

Findings

1 Critical3 High6 Medium6 Low
CriticalPrevious Version Dangerous Deltaplugins/core/scheduler/index.js
HighChild Processplugins/install/index.js
HighRuntime Package Installplugins/install/index.js
HighNode Builtin Dependency Squatpackage.json
MediumDynamic Requireplugins/tools/index.js
MediumUnsafe Vm Contextsrc/utils/sandbox.js
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperinstall.sh
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvalplugins/core/workflow/index.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings