registry  /  tower-mcp  /  0.6.0

tower-mcp@0.6.0

Air-traffic control for AI agents editing a shared repo — semantic pre-flight collision detection over MCP. Model-agnostic (Claude Code, Cursor, Codex).

Static Scan Results

scanned 4d ago · by rust-scanner

Static analysis completed at 93.0% confidence. No malicious behavior was detected; 9 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStrings
ManifestNo manifest risk signals triggered.
scanned 6 file(s), 231 KB of source

Source & flagged code

4 flagged · loading source
dist/worker.jsView file
1import { execFile } from "node:child_process"; L2: import { remoteConfig, withRemote } from "./remote.js";
High
Child Process

Package source references child process execution.

dist/worker.jsView on unpkg · L1
11// all static — the untrusted prompt goes via stdin, never the command line. L12: ...(opts.shell ? { shell: true } : {}), L13: // cmd.exe needs verbatim args or Node's quoting breaks `/c <template>`.
High
Shell

Package source references shell execution.

dist/worker.jsView on unpkg · L11
dist/index.jsView file
2350server.on("close", () => service.store.close()); L2351: log(`Tower listening on http://${host}:${port}/mcp${token ? " (token required)" : ""}`); L2352: log(`Live board: http://${host}:${port}/board`); ... L2361: } L2362: function gitDefaults(cwd, env = process.env) { L2363: const git = (cmd) => { L2364: try { L2365: return execSync(cmd, { cwd, stdio: ["ignore", "pipe", "ignore"] }).toString().trim(); L2366: } catch {
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/index.jsView on unpkg · L2350
dist/commands.jsView file
matchType = previous_version_dangerous_delta matchedPackage = tower-mcp@0.5.0 matchedIdentity = npm:dG93ZXItbWNw:0.5.0 similarity = 0.500 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/commands.jsView on unpkg

Findings

4 High2 Medium3 Low
HighChild Processdist/worker.js
HighShelldist/worker.js
HighSame File Env Network Executiondist/index.js
HighPrevious Version Dangerous Deltadist/commands.js
MediumNetwork
MediumEnvironment Vars
LowScripts Present
LowFilesystem
LowHigh Entropy Strings