registry  /  wyrm-mcp  /  7.3.3

wyrm-mcp@7.3.3

Local-first persistent memory for AI agents over MCP. Ground truths, negative learning (recorded failures block repeats), decision causality, hybrid recall, live memory streams, run-attributed fleet memory — a structured SQLite memory on your machine, no

Static Scan Results

scanned 1d ago · by rust-scanner

Static analysis flagged 18 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNativeBindingsNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicense
scanned 160 file(s), 2.00 MB of source, external domains: 127.0.0.1, account.ghosts.lk, api.openai.com, fonts.googleapis.com, fonts.gstatic.com, ghosts.lk, github.com, registry.npmjs.org, www.cloudflarestatus.com, wyrm.ghosts.lk

Source & flagged code

9 flagged · loading source
package.jsonView file
scripts.preinstall = node scripts/preinstall.cjs
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.preinstall = node scripts/preinstall.cjs
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
scripts.postinstall = node scripts/postinstall.cjs
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
dist/database.jsView file
18import { join, basename, resolve, normalize } from 'path'; L19: import { spawnSync } from 'child_process'; L20: import { getResilienceManager } from './resilience.js';
High
Child Process

Package source references child process execution.

dist/database.jsView on unpkg · L18
dist/autoconfig.jsView file
669* containing a command substitution would EXECUTE on every tool call (crucible L670: * HIGH 2026-07-03). cmd.exe (Windows) does not honor single quotes, so there L671: * we wrap in double quotes and escape embedded double-quotes.
High
Shell

Package source references shell execution.

dist/autoconfig.jsView on unpkg · L669
dist/wyrm-cli.jsView file
1618} L1619: console.log(c.dim('\n Running: npm install -g wyrm-mcp@latest\n')); L1620: const r = spawnSync('npm', ['install', '-g', 'wyrm-mcp@latest'], { stdio: 'inherit', shell: false }); L1621: if (r.status === 0)
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

dist/wyrm-cli.jsView on unpkg · L1618
578{ L579: const bridge = await import('./reverse-bridge.js'); L580: const preBrief = buildRenderPlan(deps, project, stamp);
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/wyrm-cli.jsView on unpkg · L578
dist/harvest.jsView file
18*/ L19: import { execFileSync } from 'child_process'; L20: import { readFileSync, existsSync } from 'fs'; ... L103: const out = []; L104: // ── package.json → stack fact ── L105: const pkgPath = join(projectPath, 'package.json'); ... L107: try { L108: const pkg = JSON.parse(readFileSync(pkgPath, 'utf-8')); L109: const deps = Object.keys({ ...pkg.dependencies, ...pkg.devDependencies }).slice(0, 16);
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/harvest.jsView on unpkg · L18
dist/wyrm-ui.jsView file
18*/ L19: import { spawn } from 'child_process'; L20: const PORT = parseInt(process.env.WYRM_HTTP_PORT ?? '3333', 10) || 3333; L21: const HOST = '127.0.0.1'; L22: const URL_BASE = `http://${HOST}:${PORT}`; L23: async function isHttpUp() {
High
Same File Env Network Execution

A single source file combines environment access, network access, and code or shell execution; review context before blocking.

dist/wyrm-ui.jsView on unpkg · L18

Findings

5 High6 Medium7 Low
HighInstall Time Lifecycle Scriptspackage.json
HighChild Processdist/database.js
HighShelldist/autoconfig.js
HighSame File Env Network Executiondist/wyrm-ui.js
HighRuntime Package Installdist/wyrm-cli.js
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumDynamic Requiredist/wyrm-cli.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowWeak Cryptodist/harvest.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License