Agent-driven local talking-head video cleanup and enrichment CLI.
Static analysis flagged 17 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Package source references child process execution.
packages/cli/vendor/hyperframes/resources/embedded-captions/scripts/make-composition.cjsView on unpkg · L17Package source references a known benign dynamic code generation pattern.
packages/cli/vendor/hyperframes/registry/examples/vscode-theme-visualizer/scripts/build-compositions.mjsView on unpkg · L19Package source references dynamic require/import behavior.
packages/cli/vendor/hyperframes/resources/embedded-captions/modes/standard/fonts/build-fonts-css.cjsView on unpkg · L14This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
packages/cli/src/project.tsView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
packages/cli/src/project.tsView on unpkg · L5822Source combines credential-like environment material and outbound requests; review data flow before blocking.
packages/cli/src/music/providers/minimax.tsView on unpkg · L24Package ships non-JavaScript build or shell helper files.
packages/cli/vendor/hyperframes/resources/embedded-captions/scripts/render-and-composite.shView on unpkgPackage ships high-entropy non-source blobs.
packages/cli/vendor/hyperframes/resources/embedded-captions/modes/standard/fonts/files/inter-latin-600-normal.woff2View on unpkgPackage source references child process execution.
packages/cli/vendor/hyperframes/resources/embedded-captions/scripts/make-composition.cjsView on unpkg · L17Package ships non-JavaScript build or shell helper files.
packages/cli/vendor/hyperframes/resources/embedded-captions/scripts/render-and-composite.shView on unpkgPackage ships high-entropy non-source blobs.
packages/cli/vendor/hyperframes/resources/embedded-captions/modes/standard/fonts/files/inter-latin-600-normal.woff2View on unpkgPackage source references a known benign dynamic code generation pattern.
packages/cli/vendor/hyperframes/registry/examples/vscode-theme-visualizer/scripts/build-compositions.mjsView on unpkg · L19Package source references dynamic require/import behavior.
packages/cli/vendor/hyperframes/resources/embedded-captions/modes/standard/fonts/build-fonts-css.cjsView on unpkg · L14A single source file combines environment access, network access, and code or shell execution; review context before blocking.
packages/cli/src/project.tsView on unpkg · L5822This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
packages/cli/src/project.tsView on unpkgSource combines credential-like environment material and outbound requests; review data flow before blocking.
packages/cli/src/music/providers/minimax.tsView on unpkg · L24