registry  /  jinzd-ai-cli  /  0.4.216

jinzd-ai-cli@0.4.216

Cross-platform REPL-style AI CLI with multi-provider support

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 19 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedObfuscatedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 81 file(s), 2.66 MB of source, external domains: 127.0.0.1, ai.dev, api.deepseek.com, api.minimaxi.com, api.moonshot.ai, api.openai.com, cn.bing.com, console.cloud.google.com, github.com, json.schemastore.org, mths.be, ollama.com, open.bigmodel.cn, openrouter.ai, programmablesearchengine.google.com, registry.npmjs.org, tailwindcss.com, twitter.com, www.googleapis.com

Source & flagged code

10 flagged · loading source
dist/chunk-VW7Y27WW.jsView file
6// src/tools/builtin/run-tests.ts L7: import { execSync, spawnSync } from "child_process"; L8: import { existsSync, readFileSync, readdirSync } from "fs";
High
Child Process

Package source references child process execution.

dist/chunk-VW7Y27WW.jsView on unpkg · L6
dist/chunk-TCOC4AUI.jsView file
208return { L209: shell: "powershell.exe", L210: args: ["-NoProfile", "-NonInteractive", "-Command", WIN_UTF8_PREAMBLE + command]
High
Shell

Package source references shell execution.

dist/chunk-TCOC4AUI.jsView on unpkg · L208
47// src/tools/builtin/bash.ts L48: import { spawn } from "child_process"; L49: import { existsSync as existsSync2, readdirSync, statSync } from "fs"; ... L212: } L213: return { shell: process.env["SHELL"] ?? "/bin/bash", args: ["-c", command] }; L214: } L215: function decodeWindowsBuffer(buf) { L216: const utf8 = buf.toString("utf-8"); L217: if (!utf8.includes("\uFFFD")) return utf8; ... L232: if (!cwd) { L233: cwd = process.cwd(); L234: cwdBySession.set(key, cwd);
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/chunk-TCOC4AUI.jsView on unpkg · L47
dist/web/client/vendor/tailwind.jsView file
1(()=>{var qv=Object.create;var Hi=Object.defineProperty;var $v=Object.getOwnPropertyDescriptor;var Lv=Object.getOwnPropertyNames;var Mv=Object.getPrototypeOf,Nv=Object.prototype.ha... L2: `+S+n("^")}let b=i(h.replace(/\d/g," "))+f.slice(0,this.column-1).replace(/[^\t]/g," ");return n(">")+i(h)+s(f)+`
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/web/client/vendor/tailwind.jsView on unpkg · L1
dist/chunk-CKH4KQ4E.jsView file
52function indexDir() { L53: return path.join(os.homedir(), ".aicli", INDEX_DIR_NAME); L54: } ... L66: const raw = fs.readFileSync(p, "utf-8"); L67: const parsed = JSON.parse(raw); L68: if (parsed.version !== SYMBOL_INDEX_VERSION) return null;
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/chunk-CKH4KQ4E.jsView on unpkg · L52
dist/electron-server.jsView file
86// 可选:直接在此写 key(也可通过 apiKeys 字段或环境变量提供) L87: baseUrl: z.string(), L88: // OpenAI 兼容 API 的 base URL(必填) ... L498: try { L499: const raw = JSON.parse(readFileSync(this.configPath, "utf-8")); L500: return ConfigSchema.parse(raw); ... L4796: // src/tools/builtin/bash.ts L4797: import { spawn } from "child_process"; L4798: import { existsSync as existsSync4, readdirSync as readdirSync2, statSync } from "fs";
High
Remote Agent Bridge

Source exposes local file and command tools to a remote model endpoint.

dist/electron-server.jsView on unpkg · L86
61Detached bundled service listener: dist/electron-server.js launches a Node helper and exposes a broad-bound HTTP listener. L61: import express from "express"; L62: import { createServer } from "http"; L63: import { WebSocketServer } from "ws"; ... L247: denyPorts: z.array(z.number().int().min(1).max(65535)).default([]), L248: allowPrivateNetwork: z.boolean().default(false), L249: tools: z.object({ ... L400: if (fixedEnvVar && fixedEnvVar !== dynamicEnvVar) { L401: const fixedVal = process.env[fixedEnvVar]; L402: const dynVal = process.env[dynamicEnvVar]; L403: if (fixedVal && dynVal && fixedVal !== dynVal) { L404: process.stderr.write(`[warn] env var collision: ${fixedEnvVar} and ${dynamicEnvVar} have different values for provider "${providerId}". Using ${fixedEnvVar}. L405: `);
High
Spawned Bundled Service Listener

Source launches a detached bundled service that exposes a broad-bound HTTP listener.

dist/electron-server.jsView on unpkg · L61
dist/chunk-PNTLA3MN.jsView file
854package = jinzd-ai-cli; repositoryIdentity = ai-cli; dependency = undici L854: try { L855: const { ProxyAgent, setGlobalDispatcher } = await import("undici"); L856: setGlobalDispatcher(new ProxyAgent({ uri: proxyUrl }));
High
Copied Package Dependency Bridge

Package metadata claims a different repository identity while copied source loads a runtime dependency bridge.

dist/chunk-PNTLA3MN.jsView on unpkg · L854
dist/wasm/tree-sitter-go.wasmView file
path = dist/wasm/tree-sitter-go.wasm kind = wasm_module sizeBytes = 217182 magicHex = [redacted]
Medium
Ships Wasm Module

Package ships WebAssembly modules.

dist/wasm/tree-sitter-go.wasmView on unpkg
dist/pr-JOL3IAGV.jsView file
matchType = previous_version_dangerous_delta matchedPackage = jinzd-ai-cli@0.4.215 matchedIdentity = npm:amluemQtYWktY2xp:0.4.215 similarity = 1.000 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/pr-JOL3IAGV.jsView on unpkg

Findings

6 High6 Medium7 Low
HighChild Processdist/chunk-VW7Y27WW.js
HighShelldist/chunk-TCOC4AUI.js
HighRemote Agent Bridgedist/electron-server.js
HighCopied Package Dependency Bridgedist/chunk-PNTLA3MN.js
HighSpawned Bundled Service Listenerdist/electron-server.js
HighPrevious Version Dangerous Deltadist/pr-JOL3IAGV.js
MediumDynamic Requiredist/web/client/vendor/tailwind.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/chunk-TCOC4AUI.js
MediumShips Wasm Moduledist/wasm/tree-sitter-go.wasm
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowWeak Cryptodist/chunk-CKH4KQ4E.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings