registry  /  knitbrain  /  0.12.0

knitbrain@0.12.0

Local-first MCP brain for coding agents: code retrieval, lossless context compression, persistent per-project memory, and a verify-gated closed loop — for Claude Code, Cursor, Copilot, and any MCP client.

Static Scan Results

scanned 23h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 61 file(s), 395 KB of source, external domains: 127.0.0.1, api.anthropic.com, api.github.com, api.openai.com

Source & flagged code

2 flagged · loading source
dist/engine/quota.jsView file
1import { existsSync, readFileSync } from "node:fs"; L2: import { execFileSync } from "node:child_process"; L3: import { homedir } from "node:os"; L4: import { join } from "node:path"; L5: const CLAUDE_USAGE_URL = "https://api.anthropic.com/api/oauth/usage"; L6: const CLAUDE_OAUTH_BETA = "oauth-2025-04-20"; ... L12: export function readKeychainCreds() { L13: if (process.platform !== "darwin") L14: return null; ... L27: * request. */ L28: export function readClaudeToken(home = homedir(), keychain = readKeychainCreds) { L29: const env = (process.env["CLAUDE_CODE_OAUTH_TOKEN"] ?? "").trim();
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/engine/quota.jsView on unpkg · L1
matchType = previous_version_dangerous_delta matchedPackage = knitbrain@0.9.0 matchedIdentity = npm:a25pdGJyYWlu:0.9.0 similarity = 0.879 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/engine/quota.jsView on unpkg

Findings

2 High3 Medium5 Low
HighSandbox Evasion Gated Capabilitydist/engine/quota.js
HighPrevious Version Dangerous Deltadist/engine/quota.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings