registry  /  zelari-code  /  0.7.5

zelari-code@0.7.5

Zelari Code — AI Council coding agent CLI. Multi-agent orchestration (Caronte, Nettuno, Gerione, Plutone, Minosse, Lucifero) with slash commands, provider-agnostic LLM streaming, and self-update.

Static Scan Results

scanned 1d ago · by rust-scanner

Static analysis flagged 15 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicense
scanned 114 file(s), 1.75 MB of source, external domains: api.minimax.chat, api.minimaxi.chat, api.openai.com, api.tavily.com, api.x.ai, api.z.ai, auth.x.ai, github.com, html.duckduckgo.com, json-schema.org, registry.npmjs.org

Source & flagged code

6 flagged · loading source
dist/cli/updater.jsView file
18import { createRequire } from 'node:module'; L19: import { spawn } from 'node:child_process'; L20: import path from 'node:path';
High
Child Process

Package source references child process execution.

dist/cli/updater.jsView on unpkg · L18
126* On Windows, `spawn('npm', ...)` fails with ENOENT because npm is a .cmd L127: * shim — `shell: true` lets the shell resolve the extension. L128: */
High
Shell

Package source references shell execution.

dist/cli/updater.jsView on unpkg · L126
bin/zelari-code.jsView file
21L22: const require = createRequire(import.meta.url); L23: const __dirname = path.dirname(fileURLToPath(import.meta.url));
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/zelari-code.jsView on unpkg · L21
dist/cli/main.bundled.jsView file
200systemPromptFragment: `You research using the retrieval system and the web. L201: - Use the retrieval tool listed in your AVAILABLE TOOLS (searchDocuments or searchRAG) to find prior knowledge before answering. L202: - For external facts (library docs, APIs, best practices), use web_search, then fetch_url on the best result. ... L15832: import { existsSync } from "node:fs"; L15833: import { spawnSync } from "node:child_process"; L15834: function resolveShell(forceReResolve = false) { ... L17672: try { L17673: const raw = readFileSync(file2, "utf-8"); L17674: const parsed = JSON.parse(raw); ... L17795: { id: "openai-compatible", displayName: "OpenAI-compatible", envVar: "OPENAI_API_KEY" }, L17796: { id: "minimax", displayName: "MiniMax", envVar: "MINIMAX_API_KEY", baseUrl: "https://api.MiniMax.chat/v1" }, L17797: { id: "glm", displayName: "GLM / Z.AI", envVar: "GLM_API_KEY", baseUrl: "https://api.z.ai/v1" },
High
Remote Agent Bridge

Source exposes local file and command tools to a remote model endpoint.

dist/cli/main.bundled.jsView on unpkg · L200
641assignProp: () => assignProp, L642: base64ToUint8Array: () => base64ToUint8Array, L643: base64urlToUint8Array: () => base64urlToUint8Array, ... L1521: error: new (_Err ?? $ZodError)(result.issues.map((iss) => finalizeIssue(iss, ctx, config()))) L1522: } : { success: true, data: result.value }; L1523: }; ... L3050: try { L3051: new URL(`http://[${payload.value}]`); L3052: } catch { ... L15832: import { existsSync } from "node:fs"; L15833: import { spawnSync } from "node:child_process"; L15834: function resolveShell(forceReResolve = false) {
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/cli/main.bundled.jsView on unpkg · L641
dist/cli/grokOAuth.jsView file
matchType = previous_version_dangerous_delta matchedPackage = zelari-code@0.6.2 matchedIdentity = npm:emVsYXJpLWNvZGU:0.6.2 similarity = 0.738 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/cli/grokOAuth.jsView on unpkg

Findings

4 High4 Medium7 Low
HighChild Processdist/cli/updater.js
HighShelldist/cli/updater.js
HighRemote Agent Bridgedist/cli/main.bundled.js
HighPrevious Version Dangerous Deltadist/cli/grokOAuth.js
MediumDynamic Requirebin/zelari-code.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowWeak Cryptodist/cli/main.bundled.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License