registry  /  tokenmaxx  /  0.0.0-alpha.0

tokenmaxx@0.0.0-alpha.0

A local proxy that juggles rate limits across your Codex and Claude Code accounts — with live token-throughput analytics.

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemShell
Supply chain
HighEntropyStringsObfuscatedUrlStrings
Manifest
NoLicense
scanned 1 file(s), 706 KB of source, external domains: 127.0.0.1, api.anthropic.com, api.openai.com, auth.openai.com, chatgpt.com, json-schema.org

Source & flagged code

0 flagged
No flagged code excerpts are attached to this scan.

Findings

1 High2 Medium7 Low
HighEval
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings
LowNo License
tokenmaxx@0.0.0-alpha.0: Suspicious npm security report (Warn) | LPM Firewall