registry  /  libretto  /  0.6.34

libretto@0.6.34

AI-powered browser automation library and CLI built on Playwright

Static Scan Results

scanned 1d ago · by rust-scanner

Static analysis flagged 13 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 226 file(s), 1.14 MB of source, external domains: 127.0.0.1, api.browserbase.com, api.libretto.sh, api.onkernel.com, api.steel.dev, example.test, libretto.sh, openrouter.ai, www.w3.org

Source & flagged code

6 flagged · loading source
dist/shared/paths/repo-root.jsView file
1import { spawnSync } from "node:child_process"; L2: import { resolve } from "node:path";
High
Child Process

Package source references child process execution.

dist/shared/paths/repo-root.jsView on unpkg · L1
dist/cli/commands/update.jsView file
127stdio: "inherit", L128: shell: true L129: });
High
Shell

Package source references shell execution.

dist/cli/commands/update.jsView on unpkg · L127
dist/shared/visualization/ghost-cursor.jsView file
59try { L60: await page.evaluate(new Function(initScript)); L61: } catch {
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/shared/visualization/ghost-cursor.jsView on unpkg · L59
dist/cli/core/workflow-runtime.jsView file
23try { L24: loadedModule = await import(pathToFileURL(absolutePath).href); L25: } catch (error) {
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/cli/core/workflow-runtime.jsView on unpkg · L23
dist/cli/commands/auth.jsView file
1import { spawn } from "node:child_process"; L2: import { z } from "zod"; ... L18: function resolveHostedWebsiteUrl() { L19: return process.env.LIBRETTO_WEBSITE_URL?.trim() || "https://libretto.sh"; L20: } ... L24: function openBrowser(url) { L25: const command = process.platform === "darwin" ? "open" : process.platform === "win32" ? "cmd" : "xdg-open"; L26: const args = process.platform === "win32" ? ["/c", "start", "", url] : [url]; ... L128: } L129: process.stdout.write("."); L130: await sleep(2e3);
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/cli/commands/auth.jsView on unpkg · L1
dist/cli/commands/setup.jsView file
12console.log("Installing Playwright Chromium..."); L13: const result = spawnSync("npx", ["playwright", "install", "chromium"], { L14: stdio: "inherit",
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/cli/commands/setup.jsView on unpkg · L12

Findings

4 High4 Medium5 Low
HighChild Processdist/shared/paths/repo-root.js
HighShelldist/cli/commands/update.js
HighSandbox Evasion Gated Capabilitydist/cli/commands/auth.js
HighRuntime Package Installdist/cli/commands/setup.js
MediumDynamic Requiredist/cli/core/workflow-runtime.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvaldist/shared/visualization/ghost-cursor.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings