registry  /  svamp-cli  /  0.2.263

svamp-cli@0.2.263

Svamp CLI — AI workspace daemon on Hypha Cloud

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 19 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsObfuscatedUrlStrings
Manifest
NoLicense
scanned 30 file(s), 1.25 MB of source, external domains: 127.0.0.1, amun.ai, api.github.com, api.imjoy.io, api.openai.com, claude.ai, console.anthropic.com, github.com, hypha.aicell.io, platform.claude.com, proxy.hypha.aicell.io, status.claude.com, svamp.aicell.io, tokenfans.ai, www.apple.com

Source & flagged code

9 flagged · loading source
dist/frpc-YKxUZoMA.mjsView file
161patternName = generic_password severity = medium line = 161 matchedText = lines.pu..."`);
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/frpc-YKxUZoMA.mjsView on unpkg · L161
dist/headlessCli-DfKlYX0C.mjsView file
3import { WebSocket } from 'ws'; L4: import { execSync, spawn } from 'child_process'; L5: import 'os';
High
Child Process

Package source references child process execution.

dist/headlessCli-DfKlYX0C.mjsView on unpkg · L3
dist/run-DAOLRpvC.mjsView file
7494const fullCommand = [spawnCommand, ...spawnArgs].join(" "); L7495: this.process = spawn("cmd.exe", ["/c", fullCommand], { L7496: cwd: this.options.cwd,
High
Shell

Package source references shell execution.

dist/run-DAOLRpvC.mjsView on unpkg · L7494
5import { fileURLToPath } from 'url'; L6: import { execFile, spawn as spawn$1, execSync as execSync$1, exec as exec$1 } from 'child_process'; L7: import { randomUUID as randomUUID$1 } from 'crypto'; ... L24: const mod = await import('hypha-rpc'); L25: connectToServerFn = mod.connectToServer || mod.default && mod.default.connectToServer || mod.hyphaWebsocketClient && mod.hyphaWebsocketClient.connectToServer; L26: if (!connectToServerFn) { ... L56: try { L57: const payload = JSON.parse(Buffer.from(token.split(".")[1], "base64").toString()); L58: const scope = payload.scope || ""; ... L65: function getHyphaServerUrl$1() { L66: return process.env.HYPHA_SERVER_URL || "http://localhost:9527"; L67: }
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/run-DAOLRpvC.mjsView on unpkg · L5
23if (!connectToServerFn) { L24: const mod = await import('hypha-rpc'); L25: connectToServerFn = mod.connectToServer || mod.default && mod.default.connectToServer || mod.hyphaWebsocketClient && mod.hyphaWebsocketClient.connectToServer;
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/run-DAOLRpvC.mjsView on unpkg · L23
6013writeFileSync(tmp, out.outputFiles[0].text); L6014: const nativeImport = new Function("u", "return import(u)"); L6015: return nativeImport(pathToFileURL(tmp).href);
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/run-DAOLRpvC.mjsView on unpkg · L6013
dist/cli.mjsView file
2088console.error("Usage: svamp daemon codex-auth set <base-url> <api-key> [model]"); L2089: console.error(" e.g. svamp daemon codex-auth set https://tokenfans.ai/v1 sk-... gpt-5.5"); L2090: process.exit(1); ... L2096: if (sub === "use-openai") { L2097: const key = argv[1] || process.env.OPENAI_API_KEY; L2098: if (!key) { ... L2101: } L2102: const { spawnSync } = await import('node:child_process'); L2103: const r = spawnSync("codex", ["login", "--with-api-key"], { input: key, encoding: "utf8", stdio: ["pipe", "inherit", "inherit"] });
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/cli.mjsView on unpkg · L2088
7Cross-file remote execution chain: dist/cli.mjs spawns dist/run-DAOLRpvC.mjs; helper contains network access plus dynamic code execution. L7: import 'url'; L8: import 'child_process'; L9: import 'crypto'; ... L25: console.error(`Error: svamp requires Node.js >= 22 (you have ${process.version}).`); L26: console.error(" Node 22+ includes native WebSocket support needed by hypha-rpc."); L27: console.error(" Upgrade with: nvm install 22 && nvm alias default 22"); ... L78: const os = await import('os'); L79: const svampHome = process.env.SVAMP_HOME || join(os.homedir(), ".svamp"); L80: const logsDir = join(svampHome, "logs"); ... L227: const startTime = Date.now(); L228: const exitCode = await new Promise((resolve) => { L229: const child = spawnChild(process.execPath, [
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dist/cli.mjsView on unpkg · L7
7import 'url'; L8: import 'child_process'; L9: import 'crypto'; ... L25: console.error(`Error: svamp requires Node.js >= 22 (you have ${process.version}).`); L26: console.error(" Node 22+ includes native WebSocket support needed by hypha-rpc."); L27: console.error(" Upgrade with: nvm install 22 && nvm alias default 22"); ... L78: const os = await import('os'); L79: const svampHome = process.env.SVAMP_HOME || join(os.homedir(), ".svamp"); L80: const logsDir = join(svampHome, "logs"); ... L227: const startTime = Date.now(); L228: const exitCode = await new Promise((resolve) => { L229: const child = spawnChild(process.execPath, [
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/cli.mjsView on unpkg · L7

Findings

5 High6 Medium8 Low
HighChild Processdist/headlessCli-DfKlYX0C.mjs
HighShelldist/run-DAOLRpvC.mjs
HighSame File Env Network Executiondist/cli.mjs
HighSandbox Evasion Gated Capabilitydist/run-DAOLRpvC.mjs
HighCross File Remote Execution Contextdist/cli.mjs
MediumSecret Patterndist/frpc-YKxUZoMA.mjs
MediumDynamic Requiredist/run-DAOLRpvC.mjs
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/cli.mjs
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/run-DAOLRpvC.mjs
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings
LowNo License
svamp-cli: Suspicious npm security report (Warn) | LPM Firewall