registry  /  prd-plugin  /  0.5.77

prd-plugin@0.5.77

Project-agnostic PRD, architecture, implementation planning, Superpowers-adapted execution discipline, planning lifecycle, canonical JSON artifacts, scoped repo-local skill installation, downstream-safe local integration, script install-scope policy, down

Static Scan Results

scanned 13d ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 4 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcess
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 3 file(s), 1.67 KB of source

Source & flagged code

2 flagged · loading source
scripts/version_advice.pyView file
path = scripts/version_advice.py kind = build_helper sizeBytes = 12210 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

scripts/version_advice.pyView on unpkg
templates/repo-skeleton/.claude/hooks/prd_stop_guard.pyView file
path = templates/repo-skeleton/.claude/hooks/prd_stop_guard.py kind = payload_in_excluded_dir sizeBytes = 5623 magicHex = [redacted]
High
Payload In Excluded Dir

Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.

templates/repo-skeleton/.claude/hooks/prd_stop_guard.pyView on unpkg

Findings

1 High2 Medium1 Low
HighPayload In Excluded Dirtemplates/repo-skeleton/.claude/hooks/prd_stop_guard.py
MediumShips Build Helperscripts/version_advice.py
MediumStructural Risk Force Deep Review
LowScripts Present