registry  /  walktalk-listen  /  0.3.5

walktalk-listen@0.3.5

Local push adapter for walktalk — delivers channel messages to Claude Code via MCP notifications, auto-discovering the bearer from the OS credential store.

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 7 file(s), 88.5 KB of source, external domains: walktalk.cc

Source & flagged code

2 flagged · loading source
dist/token-store.js#virtual:normalized:round1View file
14* service = "Claude Code-credentials" L15: * account = current OS user (os.userInfo().username) L16: * value = JSON: { mcpOAuth: { "<serverName>|<hash>": { accessToken, serverUrl, expiresAt? } } } ... L23: */ L24: import { execFile } from 'node:child_process'; L25: import { chmod, mkdir, readFile, rename, stat, unlink, writeFile } from 'node:fs/promises'; ... L45: function adapterConfigDir() { L46: return process.env.WALKTALK_CONFIG_DIR ?? join(homedir(), '.walktalk'); L47: } ... L59: const raw = await readFile(adapterCredentialsPath(), 'utf8'); L60: const parsed = JSON.parse(raw); L61: if (!parsed || typeof parsed.access_token !== 'string' || !parsed.access_token)
High
Sandbox Evasion Gated Capability

Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.

dist/token-store.js#virtual:normalized:round1View on unpkg · L14
dist/token-store.jsView file
matchType = previous_version_dangerous_delta matchedPackage = walktalk-listen@0.3.4 matchedIdentity = npm:d2Fsa3RhbGstbGlzdGVu:0.3.4 similarity = 0.714 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/token-store.jsView on unpkg

Findings

2 High3 Medium5 Low
HighSandbox Evasion Gated Capabilitydist/token-store.js#virtual:normalized:round1
HighPrevious Version Dangerous Deltadist/token-store.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings