registry  /  turbollm  /  1.7.5

turbollm@1.7.5

TurboLLM — local LLM platform: run any inference engine auto-tuned to your GPU, with a web UI and OpenAI/Anthropic-compatible API. Point Claude Code at your own machine in one command.

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 18 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNativeBindingsNetworkShell
Supply chain
HighEntropyStringsMinifiedObfuscatedProtestwareTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 95 file(s), 6.71 MB of source, external domains: 127.0.0.1, api.github.com, api.githubcopilot.com, api.tavily.com, chevrotain.io, cmake.org, developer.nvidia.com, en.wikipedia.org, example.com, foo.bar, gcc.gnu.org, git-scm.com, github.com, huggingface.co, kagi.com, langium.org, mcp.apify.com, mcp.atlassian.com, mcp.cloudflare.com, mcp.linear.app, mcp.mixpanel.com, mcp.neon.tech, mcp.stripe.com, mcp.supabase.com, mcp.zapier.com, nodejs.org, ns.adobe.com, pypi.org, radix-ui.com, react.dev, registry.npmjs.org, visualstudio.microsoft.com, www.ibm.com, www.w3.org, www.xfa.org

Source & flagged code

7 flagged · loading source
dist/cli.jsView file
9// src/util/hide-console-windows.ts L10: import { ChildProcess } from "child_process"; L11: var installed = false;
High
Child Process

Package source references child process execution.

dist/cli.jsView on unpkg · L9
663const ps = `Expand-Archive -LiteralPath '${archive.replace(/'/g, "''")}' -DestinationPath '${destDir.replace(/'/g, "''")}' -Force`; L664: await execFileP("powershell", ["-NoProfile", "-NonInteractive", "-Command", ps], { maxBuffer: 16 * 1024 * 1024 }); L665: } else {
High
Shell

Package source references shell execution.

dist/cli.jsView on unpkg · L663
10416// src/engines/build-prereqs.ts L10417: import { execFile as execFile8 } from "child_process"; L10418: import { delimiter, join as join20 } from "path"; ... L10422: const dirs = toolchainDirs.map((d) => d.trim()).filter(Boolean); L10423: const env = { ...process.env }; L10424: const key = Object.keys(env).find((k) => k.toLowerCase() === "path") ?? "PATH"; ... L10430: var INSTALL_URLS = { L10431: git: "https://git-scm.com/downloads", L10432: cmake: "https://cmake.org/download/",
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/cli.jsView on unpkg · L10416
9// src/util/hide-console-windows.ts L10: import { ChildProcess } from "child_process"; L11: var installed = false; L12: function hideChildConsoleWindows() { L13: if (installed || process.platform !== "win32") return; L14: installed = true; ... L47: function legacyDataDir() { L48: const base2 = process.platform === "win32" ? process.env.APPDATA || join(homedir(), "AppData", "Roaming") : process.platform === "darwin" ? join(homedir(), "Library", "Application ... L49: return join(base2, "turbollm"); ... L73: if (!existsSync(cfgPath)) return; L74: const cfg2 = JSON.parse(readFileSync(cfgPath, "utf8")); L75: let changed = false;
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/cli.jsView on unpkg · L9
matchType = previous_version_dangerous_delta matchedPackage = turbollm@1.7.1 matchedIdentity = npm:dHVyYm9sbG0:1.7.1 similarity = 0.722 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/cli.jsView on unpkg
9// src/util/hide-console-windows.ts L10: import { ChildProcess } from "child_process"; L11: var installed = false; L12: function hideChildConsoleWindows() { L13: if (installed || process.platform !== "win32") return; L14: installed = true; ... L47: function legacyDataDir() { L48: const base2 = process.platform === "win32" ? process.env.APPDATA || join(homedir(), "AppData", "Roaming") : process.platform === "darwin" ? join(homedir(), "Library", "Application ... L49: return join(base2, "turbollm"); ... L73: if (!existsSync(cfgPath)) return; L74: const cfg2 = JSON.parse(readFileSync(cfgPath, "utf8")); L75: let changed = false;
Medium
Unsafe Vm Context

Package source executes code through a VM context API.

dist/cli.jsView on unpkg · L9
dist/webdist/assets/ChatScreen-CyzSdlm7.jsView file
1var Un=d=>{throw TypeError(d)};var ki=(d,t,e)=>t.has(d)||Un("Cannot "+e);var lt=(d,t,e)=>(ki(d,t,"read from private field"),e?e.call(d):t.get(d)),Vt=(d,t,e)=>t.has(d)?Un("Cannot ad... L2: `).join("")}}function es(d,t){const e=t?URL.parse(d,t):URL.parse(d);return/https?:/.test(e?.protocol??"")}function jt(d){d.preventDefault()}function ht(d){d.preventDefault(),d.stop... L3: struct Uniforms {
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/webdist/assets/ChatScreen-CyzSdlm7.jsView on unpkg · L1

Findings

5 High6 Medium7 Low
HighChild Processdist/cli.js
HighShelldist/cli.js
HighSame File Env Network Executiondist/cli.js
HighSandbox Evasion Gated Capabilitydist/cli.js
HighPrevious Version Dangerous Deltadist/cli.js
MediumDynamic Requiredist/webdist/assets/ChatScreen-CyzSdlm7.js
MediumUnsafe Vm Contextdist/cli.js
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings