registry  /  mdflow  /  4.2.0

mdflow@4.2.0

⚠ Under review

```bash review.md # Runs on your resolved engine (default: pi) review.claude.md # Pin an engine in the filename git diff | explain.md # Pipe through any command ```

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 14 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
WildcardDependency
scanned 81 file(s), 896 KB of source, external domains: bun.sh, example.com, gist.githubusercontent.com, mdflow.dev, raw.githubusercontent.com

Source & flagged code

6 flagged · loading source
bin/mdflow.mjsView file
matchType = previous_version_dangerous_delta matchedPackage = mdflow@3.0.0 matchedIdentity = npm:bWRmbG93:3.0.0 similarity = 0.444 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

bin/mdflow.mjsView on unpkg
11L12: import { spawnSync } from "node:child_process"; L13: import { existsSync } from "node:fs";
High
Child Process

Package source references child process execution.

bin/mdflow.mjsView on unpkg · L11
11L12: import { spawnSync } from "node:child_process"; L13: import { existsSync } from "node:fs"; ... L20: function findBun() { L21: const names = process.platform === "win32" ? ["bun.exe", "bun.cmd", "bun"] : ["bun"]; L22: for (const dir of (process.env.PATH ?? "").split(delimiter)) { L23: if (!dir) continue; ... L37: async function offerBunInstall() { L38: const interactive = process.stdin.isTTY && process.stdout.isTTY; L39: console.error("mdflow runs on Bun, which isn't on your PATH."); ... L41: console.error("Install it and re-run: npm install -g bun"); L42: console.error(" or: curl -fsSL https://bun.sh/install | bash");
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

bin/mdflow.mjsView on unpkg · L11
4* L5: * mdflow runs on Bun (the source uses Bun APIs directly), but `npx mdflow` L6: * executes bins under Node. This launcher bridges the gap: find bun, exec the ... L11: L12: import { spawnSync } from "node:child_process"; L13: import { existsSync } from "node:fs";
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

bin/mdflow.mjsView on unpkg · L4
src/output.tsView file
340const regex = /```([a-zA-Z0-9_-]*)\s*\n([\s\S]*?)```/g; L341: let match: RegExpExecArray | null; L342:
High
Shell

Package source references shell execution.

src/output.tsView on unpkg · L340
123const moduleUrl = pathToFileURL(resolvedModulePath).href; L124: const loadedModule = await import(moduleUrl); L125: const schema = loadedModule[exportName];
Medium
Dynamic Require

Package source references dynamic require/import behavior.

src/output.tsView on unpkg · L123

Findings

1 Critical4 High5 Medium4 Low
CriticalPrevious Version Dangerous Deltabin/mdflow.mjs
HighChild Processbin/mdflow.mjs
HighShellsrc/output.ts
HighSandbox Evasion Gated Capabilitybin/mdflow.mjs
HighRuntime Package Installbin/mdflow.mjs
MediumDynamic Requiresrc/output.ts
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
MediumWildcard Dependency
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings