registry  /  lazycodex-ai  /  4.16.2

lazycodex-ai@4.16.2

⚠ Under review

The Best AI Agent Harness - Batteries-Included OpenCode Plugin with Multi-Model Orchestration, Parallel Background Agents, and Crafted LSP/AST Tools

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 16 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 288 file(s), 3.66 MB of source, external domains: 127.0.0.1, api.github.com, biomejs.dev, bun.sh, clangd.llvm.org, cli.github.com, clojure-lsp.io, deno.land, eu-assets.i.posthog.com, eu.i.posthog.com, github.com, gleam.run, nodejs.org, posthog.com, registry.npmjs.org, sentry.io, us-assets.i.posthog.com, us.i.posthog.com, yandex.com, your-server.example.com
Oversized source lightweight scan
dist/cli/index.js2.86 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsCryptoShellHighEntropyStringsTelemetryUrlStrings127.0.0.1cli.github.comgithub.comyour-server.example.com
dist/cli-node/index.js2.82 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsCryptoShellHighEntropyStringsTelemetryUrlStrings127.0.0.1cli.github.comgithub.comyour-server.example.com

Source & flagged code

9 flagged · loading source
packages/lsp-tools-mcp/dist/tools.jsView file
379// ../lsp-core/src/lsp/process.ts L380: import { spawn, spawnSync } from "node:child_process"; L381: import { existsSync, statSync } from "node:fs";
High
Child Process

Package source references child process execution.

packages/lsp-tools-mcp/dist/tools.jsView on unpkg · L379
488} L489: function createSpawnCommand(command, platform = process.platform, commandProcessor = process.env["ComSpec"] ?? "cmd.exe", env = process.env) { L490: const [cmd, ...args] = command;
High
Shell

Package source references shell execution.

packages/lsp-tools-mcp/dist/tools.jsView on unpkg · L488
script/qa/xterm-live-terminal.mjsView file
13L14: const require = createRequire(import.meta.url); L15:
Medium
Dynamic Require

Package source references dynamic require/import behavior.

script/qa/xterm-live-terminal.mjsView on unpkg · L13
packages/lsp-daemon/dist/index.jsView file
2Cross-file remote execution chain: packages/lsp-daemon/dist/index.js spawns packages/omo-[redacted].js; helper contains network access plus dynamic code execution. L2: function reportBestEffortCleanupError(operation, error) { L3: if (process.env["CODEX_LSP_DEBUG_CLEANUP"] !== "1") L4: return; ... L20: function contextCwd() { L21: return storage.getStore()?.cwd ?? process.cwd(); L22: } ... L59: root; L60: exitCode; L61: stderrTail; ... L202: handleData = (chunk) => { L203: const chunkBuffer = Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk, "utf8"); L204: this.inputBuffer = Buffer.concat([this.inputBuffer, chunkBuffer]);
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

packages/lsp-daemon/dist/index.jsView on unpkg · L2
packages/omo-codex/plugin/components/bootstrap/scripts/bootstrap.ps1View file
path = packages/omo-[redacted].ps1 kind = build_helper sizeBytes = 11504 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

packages/omo-codex/plugin/components/bootstrap/scripts/bootstrap.ps1View on unpkg
packages/omo-codex/plugin/components/lsp/test/fixtures/broken.pyView file
path = packages/omo-[redacted].py kind = payload_in_excluded_dir sizeBytes = 15 magicHex = 76616c75653a20737472203d20310a
High
Payload In Excluded Dir

Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.

packages/omo-codex/plugin/components/lsp/test/fixtures/broken.pyView on unpkg
dist/cli-node/index.jsView file
path = dist/cli-node/index.js kind = oversized_source_file sizeBytes = 2954127 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/cli-node/index.jsView on unpkg
path = dist/cli-node/index.js kind = oversized_cli_entrypoint sizeBytes = 2954127 magicHex = [redacted]
Medium
Oversized Cli Entrypoint

Package contains an oversized executable-looking CLI entrypoint.

dist/cli-node/index.jsView on unpkg
packages/omo-codex/plugin/components/codegraph/dist/cli.jsView file
matchType = previous_version_dangerous_delta matchedPackage = lazycodex-ai@4.15.0 matchedIdentity = npm:bGF6eWNvZGV4LWFp:4.15.0 similarity = 0.842 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

packages/omo-codex/plugin/components/codegraph/dist/cli.jsView on unpkg

Findings

1 Critical5 High6 Medium4 Low
CriticalPrevious Version Dangerous Deltapackages/omo-codex/plugin/components/codegraph/dist/cli.js
HighChild Processpackages/lsp-tools-mcp/dist/tools.js
HighShellpackages/lsp-tools-mcp/dist/tools.js
HighCross File Remote Execution Contextpackages/lsp-daemon/dist/index.js
HighPayload In Excluded Dirpackages/omo-codex/plugin/components/lsp/test/fixtures/broken.py
HighOversized Source Filedist/cli-node/index.js
MediumDynamic Requirescript/qa/xterm-live-terminal.mjs
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperpackages/omo-codex/plugin/components/bootstrap/scripts/bootstrap.ps1
MediumOversized Cli Entrypointdist/cli-node/index.js
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings