registry  /  mastracode  /  0.29.0

mastracode@0.29.0

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 17 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 30 file(s), 2.43 MB of source, external domains: 127.0.0.1, api.githubcopilot.com, api.groq.com, api.individual.githubcopilot.com, api.moonshot.ai, api.openai.com, api.scaleway.ai, auth.openai.com, chatgpt.com, claude.ai, cloud-api.near.ai, console.anthropic.com, dashscope-intl.aliyuncs.com, dashscope.aliyuncs.com, gateway-api.mastra.ai, github.com, integrate.api.nvidia.com, mastra.ai, mcp.example.com, models.dev, models.think.evroc.com, registry.npmjs.org, unpkg.com, us.posthog.com

Source & flagged code

9 flagged · loading source
dist/chunk-ZJBXLVSV.jsView file
23import { Observability, SensitiveDataFilter, MastraStorageExporter, MastraPlatformExporter } from '@mastra/observability'; L24: import { execFile, spawn } from 'child_process'; L25: import { createTavilySearchTool, createTavilyExtractTool } from '@mastra/tavily';
High
Child Process

Package source references child process execution.

dist/chunk-ZJBXLVSV.jsView on unpkg · L23
43import { MCPClient, MCPOAuthClientProvider } from '@mastra/mcp'; L44: import { execa } from 'execa'; L45: import { mkdir } from 'fs/promises';
High
Shell

Package source references shell execution.

dist/chunk-ZJBXLVSV.jsView on unpkg · L43
23import { Observability, SensitiveDataFilter, MastraStorageExporter, MastraPlatformExporter } from '@mastra/observability'; L24: import { execFile, spawn } from 'child_process'; L25: import { createTavilySearchTool, createTavilyExtractTool } from '@mastra/tavily'; ... L57: if (event.toolName === "request_access" || payload.kind === "sandbox_access_request") { L58: return { resumeData: "Yes" }; L59: } ... L87: } L88: function exitCodeForStatus(status) { L89: switch (status) { ... L478: function resolveBinaryAsync(name) { L479: const command = process.platform === "win32" ? "where" : "which"; L480: return new Promise((resolve3) => {
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/chunk-ZJBXLVSV.jsView on unpkg · L23
1import { getLocalPlansRelativeDir, getPlansDir, setAuthStorage, loadSettings, MEMORY_GATEWAY_PROVIDER, HookManager, getAvailableModePacks, getAvailableOmPacks, resolveModelDefaults... L2: import { AuthStorage, DEFAULT_OM_MODEL_ID, DEFAULT_CONFIG_DIR, validateConfigDirName, detectProject, getResourceIdOverride, getStorageConfig, getObservabilityDatabasePath, getAppDa... L3: import { getToolCategory, MC_TOOLS, TOOL_NAME_OVERRIDES } from './chunk-UOFNLVKF.js'; ... L23: import { Observability, SensitiveDataFilter, MastraStorageExporter, MastraPlatformExporter } from '@mastra/observability'; L24: import { execFile, spawn } from 'child_process'; L25: import { createTavilySearchTool, createTavilyExtractTool } from '@mastra/tavily'; ... L1633: try { L1634: const content = readFileSync(filePath, "utf-8").trim(); L1635: if (content) {
High
Remote Agent Bridge

Source exposes local file and command tools to a remote model endpoint.

dist/chunk-ZJBXLVSV.jsView on unpkg · L1
dist/headless.cjsView file
2L3: var chunkJU3BZYCN_cjs = require('./chunk-JU3BZYCN.cjs'); L4:
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/headless.cjsView on unpkg · L2
dist/chunk-KXTU547O.jsView file
3import { MC_TOOLS, getToolCategory, TOOL_CATEGORIES } from './chunk-UOFNLVKF.js'; L4: import { spawn, execFile, execSync, execFileSync } from 'child_process'; L5: import { randomUUID, createHash } from 'crypto'; ... L449: /** L450: * Private constructor — use static factories or the options constructor. L451: */ ... L838: box.addChild( L839: new Text(theme.fg("dim", "See https://mastra.ai/models for supported providers and API key env vars."), 0, 0) L840: ); ... L1134: async function detectPackageManager() { L1135: const userAgent = process.env.npm[redacted]; L1136: if (userAgent) {
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/chunk-KXTU547O.jsView on unpkg · L3
CHANGELOG.mdView file
455patternName = private_key_rsa severity = critical line = 455 matchedText = GITHUB_A...---"
Critical
Secret Pattern

RSA private key in CHANGELOG.md

CHANGELOG.mdView on unpkg · L455
683patternName = private_key_rsa severity = critical line = 683 matchedText = GITHUB_A...---"
Critical
Secret Pattern

RSA private key in CHANGELOG.md

CHANGELOG.mdView on unpkg · L683
README.mdView file
300patternName = private_key_rsa severity = critical line = 300 matchedText = export G...---"
Critical
Secret Pattern

RSA private key in README.md

README.mdView on unpkg · L300

Findings

3 Critical4 High5 Medium5 Low
CriticalSecret PatternCHANGELOG.md
CriticalSecret PatternCHANGELOG.md
CriticalSecret PatternREADME.md
HighChild Processdist/chunk-ZJBXLVSV.js
HighShelldist/chunk-ZJBXLVSV.js
HighSandbox Evasion Gated Capabilitydist/chunk-ZJBXLVSV.js
HighRemote Agent Bridgedist/chunk-ZJBXLVSV.js
MediumDynamic Requiredist/headless.cjs
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/chunk-KXTU547O.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings