registry  /  sliccy  /  5.37.0

sliccy@5.37.0

⚠ Under review

Browser-based coding agent with thin CLI server

Static Scan Results

scanned 1d ago · by rust-scanner

Static analysis flagged 21 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNativeBindingsNetworkShellWebSocket
Supply chain
HighEntropyStringsMinifiedObfuscatedProtestwareTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 399 file(s), 16.3 MB of source, external domains: 127.0.0.1, admin.da.live, adobe-llm-proxy.paolo-moz.workers.dev, aiplatform.googleapis.com, akjjllgokmbgpbdbmafpiefnhidlmbgf.chromiumapp.org, api.anthropic.com, api.cerebras.ai, api.deepseek.com, api.github.com, api.groq.com, api.individual.githubcopilot.com, api.mistral.ai, api.openai.com, api.x.ai, auth.openai.com, auth.x.ai, bedrock-runtime.us-west-2.amazonaws.com, cdn.jsdelivr.net, chatgpt.com, chromewebstore.googleapis.com, demo.sliccy.now, docs.anthropic.com, docs.expo.dev, docs.mistral.ai, dummy.com, example.com, foo.bar, generativelanguage.googleapis.com, github.com, help.openai.com, huggingface.co, ims-na1-stg1.adobelogin.com, ims-na1.adobelogin.com, jamespre.dev, json-schema.org, npmjs.com, ns.adobe.com, oauth2.googleapis.com, openrouter.ai, platform.claude.com, rolldown.rs, rum.hlx.page, slicc-tray-hub-staging.minivelos.workers.dev, tray.example.com, web.dev, www.googleapis.com, www.gravatar.com, www.sliccy.ai, www.w3.org, www.xfa.org
Oversized source lightweight scan
dist/ui/assets/kernel-worker-Bon_aPbd.js2.93 MB file, sampled 256 KB
FilesystemChildProcessWebSocketHighEntropyStringsUrlStringswww.sliccy.ai
dist/ui/slicc-diff.js9.41 MB file, sampled 256 KB
ChildProcessMinified

Source & flagged code

10 flagged · loading source
package.jsonView file
scripts.postinstall = if [ -d patches ]; then npx --no-install patch-package || { echo "ERROR: patches/ present but patch-package not installed (run a full 'npm ci' incl. devDependencies)"; exit 1; }; f...
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = if [ -d patches ]; then npx --no-install patch-package || { echo "ERROR: patches/ present but patch-package not installed (run a full 'npm ci' incl. devDependencies)"; exit 1; }; f...
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
dist/ui/slicc-editor.jsView file
9`&&n.lineWrapping&&(i&&(i=b.single(i.main.anchor-1,i.main.head-1)),t={from:s.from,to:s.to,insert:L.of([" "])}),t)return Co(n,t,i,o);if(i&&!pr(i,s)){let l=!1,a="select";return n.inp... L10: `))};if((w.mac||w.android)&&f.from==o-1&&/^\. ?$/.test(i.text)&&e.contentDOM.getAttribute("autocorrect")=="off"&&(f={from:l,to:a,insert:L.of([i.text.replace("."," ")])}),this.pendi... L11: `&&(t="");else{let i=t.indexOf(`
High
Child Process

Package source references child process execution.

dist/ui/slicc-editor.jsView on unpkg · L9
dist/node-server/electron-controller.jsView file
matchType = previous_version_dangerous_delta matchedPackage = sliccy@5.26.1 matchedIdentity = npm:c2xpY2N5:5.26.1 similarity = 0.650 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/node-server/electron-controller.jsView on unpkg
84// (e.g. npx tsx packages/node-server/src/index.ts --electron /Applications/Slack.app) L85: // Shell wrappers like `zsh -c ... /Applications/Slack.app --kill` or L86: // `timeout 30 npm run dev:electron -- /Applications/Slack.app` also match.
High
Shell

Package source references shell execution.

dist/node-server/electron-controller.jsView on unpkg · L84
dist/ui/assets/browser-2wdq8OwU.jsView file
1Cross-file remote execution chain: dist/ui/assets/browser-2wdq8OwU.js spawns dist/ui/assets/rolldown-runtime-aKtaBQYM.js; helper contains network access plus dynamic code execution. L1: import{r as e,t}from"./rolldown-runtime-aKtaBQYM.js";t((e=>{(function(){var t={not_string:/[^s]/,not_bool:/[^t]/,not_type:/[^T]/,not_primitive:/[^v]/,number:/[diefg]/,numeric_arg:/... L2: `))&&(e=e.trim()),(!n.newlineIsToken||!t.includes(` ... L68: L69: `.substring(0,i)+r}function Pn(e){return e!=null&&(typeof e==`string`||e.nodeType&&(e.nodeType===1||e.nodeType===9||e.nodeType===11))}var Fn=Object.defineProperty,In=(t=>typeof e<`... L70:
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dist/ui/assets/browser-2wdq8OwU.jsView on unpkg · L1
68L69: `.substring(0,i)+r}function Pn(e){return e!=null&&(typeof e==`string`||e.nodeType&&(e.nodeType===1||e.nodeType===9||e.nodeType===11))}var Fn=Object.defineProperty,In=(t=>typeof e<`... L70:
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/ui/assets/browser-2wdq8OwU.jsView on unpkg · L68
dist/ui/assets/transformers.web-C6PlPLR-.jsView file
8${s} L9: }`,n=Function(Object.keys(o),s)(...Object.values(o)),s=`methodCaller<(${i.map(e=>e.name)}) => ${r.name}>`,xn(Object.defineProperty(n,"name",{value:s}))}function Dn(e,t){return t>>>... L10: `),n)}r.validationMode&&Dt(a,`validationMode`,r.validationMode,n)}let o=gt().webgpuRegisterDevice(e);if(o){let[e,t,r]=o;Dt(a,`deviceId`,e.toString(),n),Dt(a,`webgpuInstance`,t.toSt...
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/ui/assets/transformers.web-C6PlPLR-.jsView on unpkg · L8
dist/ui/assets/js-realm-worker-wU5ANqny.jsView file
30/** L31: * [js-sha256]{@link https://github.com/emn178/js-sha256} L32: * ... L39: /*! pako 2.1.0 https://github.com/nodeca/pako @license (MIT AND Zlib) */ L40: ;function S(e){let t=e.length;for(;--t>=0;)e[t]=0}const C=new Uint8Array([0,0,0,0,0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3,4,4,4,4,5,5,5,5,0]),w=new Uint8Array([0,0,0,0,1,1,2,2,3,3,4,4,5,5,... L41: `)?t:`${t}\n`);return}try{e.writeStdout(`${JSON.stringify(t,null,2)}\n`)}catch{e.writeStdout(`${String(t)}\n`)}},warn(n,i){let a=typeof i==`object`&&i&&`prefix`in i?i.prefix:void 0... ... L43: `)}function Lr(e){return e instanceof Date?e:new Date(e)}function Rr(e,t=`short`){let n=Lr(e);if(Number.isNaN(n.getTime()))return String(e);if(t===`iso`)return n.toISOString();if(t... L44: `,cpus:()=>[{model:`virtual`,speed:0}],hostname:()=>`slicc`,type:()=>`Linux`,release:()=>`0.0.0`};function Vi(e){let t=typeof e==`string`?e:e.href;if(!t.startsWith(`file://`))throw... L45: `),r}async function s(t){if(typeof t!=`string`||!t.trim())throw TypeError(`skill.token(providerId): providerId must be a non-empty string`);let n=`oauth-token ${ia(t)}`,{stdout:r,s...
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/ui/assets/js-realm-worker-wU5ANqny.jsView on unpkg · L30
dist/ui/slicc-diff.jsView file
path = dist/ui/slicc-diff.js kind = oversized_source_file sizeBytes = 9865411 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/ui/slicc-diff.jsView on unpkg

Findings

1 Critical6 High6 Medium8 Low
CriticalPrevious Version Dangerous Deltadist/node-server/electron-controller.js
HighInstall Time Lifecycle Scriptspackage.json
HighChild Processdist/ui/slicc-editor.js
HighShelldist/node-server/electron-controller.js
HighCommand Output Exfiltrationdist/ui/assets/js-realm-worker-wU5ANqny.js
HighCross File Remote Execution Contextdist/ui/assets/browser-2wdq8OwU.js
HighOversized Source Filedist/ui/slicc-diff.js
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumDynamic Requiredist/ui/assets/transformers.web-C6PlPLR-.js
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/ui/assets/browser-2wdq8OwU.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings