Share a local coding-agent CLI (Claude Code, Codex, Gemini, Aider, …) into a ThinkPool Code room, live.
Static analysis flagged 14 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Package contains a critical-looking secret pattern.
supabase-key.mjsView on unpkg · L45Supabase service role key (JWT) in supabase-key.mjs
supabase-key.mjsView on unpkg · L45Source writes installer persistence such as shell profile or service configuration.
service.mjsView on unpkg · L23Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
plan-meters.mjsView on unpkg · L2Package ships non-JavaScript build or shell helper files.
hermes-acp-bootstrap.pyView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bridge.mjsView on unpkgPackage contains a critical-looking secret pattern.
supabase-key.mjsView on unpkg · L45Supabase service role key (JWT) in supabase-key.mjs
supabase-key.mjsView on unpkg · L45Package ships non-JavaScript build or shell helper files.
hermes-acp-bootstrap.pyView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bridge.mjsView on unpkgSource writes installer persistence such as shell profile or service configuration.
service.mjsView on unpkg · L23Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
plan-meters.mjsView on unpkg · L2