registry  /  milens  /  0.7.3

milens@0.7.3

AI-DOS: Code Intelligence Platform — knowledge graphs, security scanning, and closed-loop AI development. 43 MCP tools, 6 sub-agent prompts, 190 security rules, 7 CLI workflows.

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 17 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 54 file(s), 890 KB of source, external domains: 127.0.0.1, cdn.jsdelivr.net, github.com

Source & flagged code

8 flagged · loading source
dist/server/mcp-prompts.jsView file
435patternName = generic_password severity = medium line = 435 matchedText = | 1 | se...RD |
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/server/mcp-prompts.jsView on unpkg · L435
dist/security/rules.jsView file
215severity: 'CRITICAL', L216: name: 'Use of exec() in Python', L217: description: 'Python exec() executes arbitrary code from a string. Avoid using it.',
High
Child Process

Package source references child process execution.

dist/security/rules.jsView on unpkg · L215
198severity: 'CRITICAL', L199: name: 'Use of eval()', L200: description: 'eval() executes arbitrary code from a string and is extremely dangerous. Almost always avoidable.',
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/security/rules.jsView on unpkg · L198
dist/cli.jsView file
9Cross-file remote execution chain: dist/cli.js spawns dist/security/rules.js; helper contains network access plus dynamic code execution. L9: if (nodeMajor < 20) { L10: process.stderr.write(`milens requires Node.js >= 20.0.0 (current: ${process.version})\n`); L11: process.exit(1); ... L14: const __filename = fileURLToPath(import.meta.url); L15: const PKG_VERSION = process.env.MILENS_VERSION ?? JSON.parse(readFileSync(join(dirname(__filename), '..', 'package.json'), 'utf-8')).version; L16: // Files each harness adapter contributes, relative to adapters/<harness>/ (src) and ... L506: if (opts.clearCache !== false) { L507: const npxCache = joinPath(getHomedir(), '.npm', '_npx'); L508: if (fsExists(npxCache)) { ... L672: server.listen(port, '127.0.0.1', () => { L673: const url = `http://127.0.0.1:${port}`; L674: console.log(`\n📊 milens Dashboard → ${url}\n`);
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dist/cli.jsView on unpkg · L9
1259console.log(`\nGenerated install command:`); L1260: console.log(` npx milens init --profile ${opts.profile} ${withFlags} ${harnessFlag}`.trim()); L1261: const confirm = await ask('\nProceed with install? [Y/n]: '); ... L1273: console.log(`Milens init — bootstrapping ${opts.profile} profile for ${root}`); L1274: const { execSync } = await import('node:child_process'); L1275: console.log('Step 1/4: Analyzing codebase...');
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/cli.jsView on unpkg · L1259
9if (nodeMajor < 20) { L10: process.stderr.write(`milens requires Node.js >= 20.0.0 (current: ${process.version})\n`); L11: process.exit(1); ... L14: const __filename = fileURLToPath(import.meta.url); L15: const PKG_VERSION = process.env.MILENS_VERSION ?? JSON.parse(readFileSync(join(dirname(__filename), '..', 'package.json'), 'utf-8')).version; L16: // Files each harness adapter contributes, relative to adapters/<harness>/ (src) and ... L506: if (opts.clearCache !== false) { L507: const npxCache = joinPath(getHomedir(), '.npm', '_npx'); L508: if (fsExists(npxCache)) { ... L672: server.listen(port, '127.0.0.1', () => { L673: const url = `http://127.0.0.1:${port}`; L674: console.log(`\n📊 milens Dashboard → ${url}\n`);
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/cli.jsView on unpkg · L9
.agents/skills/milens-security-review/SKILL.mdView file
47patternName = generic_password severity = medium line = 47 matchedText = - **Conf...igh)
Medium
Secret Pattern

Hardcoded password in .agents/skills/milens-security-review/SKILL.md

.agents/skills/milens-security-review/SKILL.mdView on unpkg · L47
209patternName = generic_password severity = medium line = 209 matchedText = 1. **Don...ame.
Medium
Secret Pattern

Hardcoded password in .agents/skills/milens-security-review/SKILL.md

.agents/skills/milens-security-review/SKILL.mdView on unpkg · L209

Findings

4 High7 Medium6 Low
HighChild Processdist/security/rules.js
HighShell
HighCross File Remote Execution Contextdist/cli.js
HighRuntime Package Installdist/cli.js
MediumSecret Patterndist/server/mcp-prompts.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/cli.js
MediumStructural Risk Force Deep Review
MediumSecret Pattern.agents/skills/milens-security-review/SKILL.md
MediumSecret Pattern.agents/skills/milens-security-review/SKILL.md
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/security/rules.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings