Lines 1-31javascript
2var __importDefault = (this && this.__importDefault) || function (mod) {
3 return (mod && mod.__esModule) ? mod : { "default": mod };
5Object.defineProperty(exports, "__esModule", { value: true });
6exports.runAuth = runAuth;
7exports.runStatus = runStatus;
8exports.runRevoke = runRevoke;
9const fs_1 = __importDefault(require("fs"));
10const os_1 = __importDefault(require("os"));
11const path_1 = __importDefault(require("path"));
12const child_process_1 = require("child_process");
13const config_js_1 = require("./config.js");
14const DEFAULT_URL = "https://vector.benplat.in";
15const POLL_INTERVAL_MS = 2000;
17const VECTOR_ENTRY = { command: "npx", args: ["-y", "vector-mcp"] };
18const FALLBACK_CMD = "claude mcp add vector -s user -- npx -y vector-mcp";
19function checkNodeInstalled() {
HighRuntime Package Install
Package source invokes a package manager install command at runtime.
dist/auth.jsView on unpkg · L11 21 (0, child_process_1.execFileSync)("npx", ["--version"], { stdio: "ignore", timeout: 5000 });
24 process.stderr.write("Node.js is required but not installed.\n\n");
25 if (process.platform === "darwin") {
HighCommand Output Exfiltration
Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/auth.jsView on unpkg · L11 26 process.stderr.write("Install it with Homebrew:\n brew install node\n\n");
HighSandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/auth.jsView on unpkg · L11 27 process.stderr.write("Don't have Homebrew? Install Node via nvm:\n");
28 process.stderr.write(" curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.0/install.sh | bash\n");
29 process.stderr.write(" nvm install node\n\n");