Type-safe JavaScript dialect with runtime validation, sandboxed VM execution, and AI agent orchestration. Transpiles TypeScript to validated JS with fuel-metered execution for untrusted code.
Static analysis flagged 19 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Package contains a high-severity secret pattern.
demo/src/firebase-auth.tsView on unpkg · L23Google API key in demo/src/firebase-auth.ts
demo/src/firebase-auth.tsView on unpkg · L23Package source references dynamic require/import behavior.
demo/examples.test.tsView on unpkg · L81Package source references a known benign dynamic code generation pattern.
demo/examples.test.tsView on unpkg · L522Source reaches cloud instance metadata or link-local credential endpoints.
dist/tjs-eval.jsView on unpkg · L1Package ships non-JavaScript build or shell helper files.
bin/install-vscode.shView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.jsView on unpkgPackage contains a high-severity secret pattern.
demo/src/firebase-auth.tsView on unpkg · L23Google API key in demo/src/firebase-auth.ts
demo/src/firebase-auth.tsView on unpkg · L23Package ships non-JavaScript build or shell helper files.
bin/install-vscode.shView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.jsView on unpkgPackage source references dynamic require/import behavior.
demo/examples.test.tsView on unpkg · L81Package source references a known benign dynamic code generation pattern.
demo/examples.test.tsView on unpkg · L522Source reaches cloud instance metadata or link-local credential endpoints.
dist/tjs-eval.jsView on unpkg · L1