registry  /  svamp-cli  /  0.2.256

svamp-cli@0.2.256

⚠ Under review

Svamp CLI — AI workspace daemon on Hypha Cloud

Static Scan Results

scanned 5d ago · by rust-scanner

Static analysis flagged 19 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetworkShellWebSocket
Supply chain
HighEntropyStringsObfuscatedUrlStrings
Manifest
NoLicense
scanned 30 file(s), 1.22 MB of source, external domains: 127.0.0.1, amun.ai, api.github.com, api.imjoy.io, api.openai.com, claude.ai, console.anthropic.com, github.com, hypha.aicell.io, platform.claude.com, proxy.hypha.aicell.io, status.claude.com, svamp.aicell.io, www.apple.com

Source & flagged code

9 flagged · loading source
dist/frpc--8kUn3Em.mjsView file
164patternName = generic_password severity = medium line = 164 matchedText = lines.pu..."`);
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/frpc--8kUn3Em.mjsView on unpkg · L164
dist/commands-Cgi-GKQk.mjsView file
1import { execSync } from 'node:child_process'; L2: import { existsSync, readFileSync } from 'node:fs';
High
Child Process

Package source references child process execution.

dist/commands-Cgi-GKQk.mjsView on unpkg · L1
dist/run-BDX-RaEm.mjsView file
7452const fullCommand = [spawnCommand, ...spawnArgs].join(" "); L7453: this.process = spawn("cmd.exe", ["/c", fullCommand], { L7454: cwd: this.options.cwd,
High
Shell

Package source references shell execution.

dist/run-BDX-RaEm.mjsView on unpkg · L7452
5import { fileURLToPath } from 'url'; L6: import { execFile, spawn as spawn$1, execSync as execSync$1, exec as exec$1 } from 'child_process'; L7: import { randomUUID as randomUUID$1 } from 'crypto'; ... L27: const mod = await import('hypha-rpc'); L28: connectToServerFn = mod.connectToServer || mod.default && mod.default.connectToServer || mod.hyphaWebsocketClient && mod.hyphaWebsocketClient.connectToServer; L29: if (!connectToServerFn) { ... L59: try { L60: const payload = JSON.parse(Buffer.from(token.split(".")[1], "base64").toString()); L61: const scope = payload.scope || ""; ... L68: function getHyphaServerUrl$1() { L69: return process.env.HYPHA_SERVER_URL || "http://localhost:9527"; L70: }
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/run-BDX-RaEm.mjsView on unpkg · L5
26if (!connectToServerFn) { L27: const mod = await import('hypha-rpc'); L28: connectToServerFn = mod.connectToServer || mod.default && mod.default.connectToServer || mod.hyphaWebsocketClient && mod.hyphaWebsocketClient.connectToServer;
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/run-BDX-RaEm.mjsView on unpkg · L26
5971writeFileSync(tmp, out.outputFiles[0].text); L5972: const nativeImport = new Function("u", "return import(u)"); L5973: return nativeImport(pathToFileURL(tmp).href);
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/run-BDX-RaEm.mjsView on unpkg · L5971
dist/cli.mjsView file
7Cross-file remote execution chain: dist/cli.mjs spawns dist/run-BDX-RaEm.mjs; helper contains network access plus dynamic code execution. L7: import 'url'; L8: import 'child_process'; L9: import 'crypto'; ... L28: console.error(`Error: svamp requires Node.js >= 22 (you have ${process.version}).`); L29: console.error(" Node 22+ includes native WebSocket support needed by hypha-rpc."); L30: console.error(" Upgrade with: nvm install 22 && nvm alias default 22"); ... L81: const os = await import('os'); L82: const svampHome = process.env.SVAMP_HOME || join(os.homedir(), ".svamp"); L83: const logsDir = join(svampHome, "logs"); ... L230: const startTime = Date.now(); L231: const exitCode = await new Promise((resolve) => { L232: const child = spawnChild(process.execPath, [
High
Cross File Remote Execution Context

Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.

dist/cli.mjsView on unpkg · L7
7import 'url'; L8: import 'child_process'; L9: import 'crypto'; ... L28: console.error(`Error: svamp requires Node.js >= 22 (you have ${process.version}).`); L29: console.error(" Node 22+ includes native WebSocket support needed by hypha-rpc."); L30: console.error(" Upgrade with: nvm install 22 && nvm alias default 22"); ... L81: const os = await import('os'); L82: const svampHome = process.env.SVAMP_HOME || join(os.homedir(), ".svamp"); L83: const logsDir = join(svampHome, "logs"); ... L230: const startTime = Date.now(); L231: const exitCode = await new Promise((resolve) => { L232: const child = spawnChild(process.execPath, [
Medium
Install Persistence

Source writes installer persistence such as shell profile or service configuration.

dist/cli.mjsView on unpkg · L7
dist/commands-DPKRLSJZ.mjsView file
matchType = previous_version_dangerous_delta matchedPackage = svamp-cli@0.2.255 matchedIdentity = npm:c3ZhbXAtY2xp:0.2.255 similarity = 0.900 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/commands-DPKRLSJZ.mjsView on unpkg

Findings

1 Critical4 High6 Medium8 Low
CriticalPrevious Version Dangerous Deltadist/commands-DPKRLSJZ.mjs
HighChild Processdist/commands-Cgi-GKQk.mjs
HighShelldist/run-BDX-RaEm.mjs
HighSandbox Evasion Gated Capabilitydist/run-BDX-RaEm.mjs
HighCross File Remote Execution Contextdist/cli.mjs
MediumSecret Patterndist/frpc--8kUn3Em.mjs
MediumDynamic Requiredist/run-BDX-RaEm.mjs
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/cli.mjs
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/run-BDX-RaEm.mjs
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings
LowNo License