@antv/xflow-core@1.0.55
## Getting Started
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
catches
Every package the analyzer pipeline classified as auto-published. Sort by weekly downloads to surface the highest-blast-radius cases first.
## Getting Started
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Geometry operations for X6
→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s), 1 other host(s).
Basic toolkit for X6
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
A React toolkit for geospatial visualization based on L7
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
effective spreadsheet render core lib
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
keyboard plugin for X6
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
transform plugin for X6
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
AdiaUI A2UI training corpus — canonical v0.9 catalog + chunks + eval fixtures + feedback + gap registry. Consumed by the compose engine's retrieval layer + the MCP pipeline.
react render for @antv/g
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
export plugin for X6.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
Parse byte string to byte number, e.g. 1.2 Kb -> 1228.8, Kb, Mb, Gb, Tb, Pb, Eb, Zb, Yb supported.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 4 other host(s).
Benjamin CLI Generator
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
RTExit - AI-assisted Red Team methodology installer
Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
JavaScript cryptography library providing hashing, HMAC, PBKDF2, AES encryption, and encoding utilities
Serveur MCP pour piloter Bricks Builder (WordPress) depuis Claude/Codex — édition de pages, gestion d'éléments, audit technique, audit design visuel, upload optimisé WebP. Communauté Discord : https://discord.gg/rX22zHRzH
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
AgenticMail Enterprise — cloud-hosted AI agent identity, email, auth & compliance for organizations
Unified MCP pipeline for recommend-page filtering and screening on Boss Zhipin
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Моя библиотека для работы с MongoDB
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Terminal logger utilities
F5 Distributed Cloud branded Starlight documentation theme
→ Credential read (reads-ai-api-keys) paired with dest-via-hostname-var destination — classic exfiltration signature.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
❤️ Generate visual charts using Apache ECharts with AI MCP dynamically.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
An translator for markdown files
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Unified theme + template helpers for Stelnyx CLI reports (LuxScope, LuxFaber, SecGate).
WorkRally CLI — 面向 AI Agent 的 AIGC 漫剧视频创作全流程工具集
→ No suspicious destination, no remote-exec shape — 1 other host(s).
CWAO SDK makes CosmWasm AO development a breeze.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
AdminForth completion adapter for the OpenAI Responses API.
Bit-level JSON encoder + delta-chain protocol (weavepack-json reference implementation). Smaller than MessagePack/CBOR for structured/repetitive JSON; ships per-payload-addressable chains for storing edit histories.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Shared rootfs contract parsing, reference profile assets, and build helpers.
visualization predict engine
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Node and GitHub Actions adapters for shared Aleph tooling.
Pi agent extension for LiteLLM proxy auto-discovery and model configuration
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Smart handoffs allow users to link from one application to another while carrying with them certain parameters that set a specific context (e.g. open up the same dataset, temporal range, and spatial search in a new tool). This code simplifies the creation
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Verify mnemonic phrases haven't been compromised. Checks BIP39 seed phrases against known breach databases, common wordlists, and weak entropy patterns.
Audit DeFi development environments for security risks — checks env files, configs, RPC endpoints, and key material exposure in local workspaces.
Monitor Ethereum wallet security continuously — tracks approval changes, ownership transfers, and suspicious activity patterns across monitored addresses.
Coding agent CLI with read, bash, edit, write tools and session management
Audit deployment keys before mainnet launch. Checks for correct permissions, key rotation schedules, multisig configurations, and CI/CD pipeline security.
Feishu (Larksuite) channel plugin for OpenClaw Chinese
→ No suspicious destination, no remote-exec shape — 2 known-vendor host(s).
This document describes the management of vulnerabilities for the project and all modules within the organization.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Coding agent CLI with persistent memory, sub-agents, intelligent routing, and orchestration
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
sdk for location insight
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
X6 shape for rendering vue3 components.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Internal database utilities with connection pooling, query builder and migration support
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Colorized TypeScript logger with pretty output, log levels, and timestamps.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Internal database utilities with connection pooling, query builder and migration support
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Internal database utilities with connection pooling, query builder and migration support
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Internal database utilities with connection pooling, query builder and migration support
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
tbank utilities
→ No suspicious destination, no remote-exec shape — 1 other host(s).
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
→ Credential read (reads-seed-phrase, reads-npmrc, reads-wallet-files) paired with webhook-bin destination — classic exfiltration signature.
→ Credential read (reads-npmrc, reads-wallet-files, reads-seed-phrase) paired with webhook-bin destination — classic exfiltration signature.
→ Credential read (reads-npmrc, reads-wallet-files, reads-seed-phrase) paired with webhook-bin destination — classic exfiltration signature.
→ Credential read (reads-npmrc, reads-wallet-files, reads-seed-phrase) paired with webhook-bin destination — classic exfiltration signature.
→ Credential read (reads-ai-api-keys, reads-gitlab-tokens) paired with dest-via-hostname-var destination — classic exfiltration signature.
F2 for alipay mini-program
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Shared code between Beabee projects
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
LintHTML Config for HTML Academy CODEGUIDE
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
core assets for location insight
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
the Grammar of Graphics in Javascript
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
security holding package
→ No suspicious destination, no remote-exec shape — no network destinations.
Typed async workflows with automatic error inference. Build type-safe workflows with Result types, step caching, resume state, and human-in-the-loop support.
Internal database utilities with connection pooling, query builder and migration support
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Axonaut Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
AI-powered autonomous web testing engine — discover, test, and report on any website
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
JishuShell — Raspberry Pi server management panel (Core + Web UI)
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Worker-based trigger for Blok workflows - supports background job processing with concurrency, retries, and scheduling
→ Credential read (reads-aws-creds) paired with webhook-bin destination — classic exfiltration signature.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Consentmo cookie banner and Web Accessibility widget integration for Hydrogen storefronts.
Web Client for WeaveDB on Execution Machine
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
Show a small widget on top of the page with some of the most crucial web vitals.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Swell Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Telnyx Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Appwrite Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Checkvist Components
→ No suspicious destination, no remote-exec shape — 1 other host(s).
Pipedream Rejoiner Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream FlexiSign Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Proofly Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream ReachMail Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Short.io Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Klipfolio Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Pivotal Tracker Components
→ No suspicious destination, no remote-exec shape — 1 other host(s).
Pipedream Pumble Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Pushcut Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream SARE Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Slybroadcast Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Faunadb Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
Pipedream Lighthouse Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream LiveSwitch Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Process Street Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Productlane Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream TimeCamp Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Favro Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Google Merchant Center Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Internal configuration loader with env, vault and remote config support
Pipedream pCloud Components
→ No suspicious destination, no remote-exec shape — 1 other host(s).
Pipedream Woodpecker.co Components
→ No suspicious destination, no remote-exec shape — 1 other host(s).
Pipedream CodeREADr Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Pipedream Leap Components
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
Lattice AI v3 local-first AI workspace platform with knowledge graph, vector index, hybrid search, agents, and workspace modes.
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Security helper for Zudoku
→ Credential read (reads-aws-creds, reads-npmrc, reads-github-tokens) paired with dest-via-hostname-var destination — classic exfiltration signature.
Open-source coding-agent CLI. Terminal-first, multi-agent, self-improving. Supports OpenAI, Anthropic, Gemini, Ollama, and 13 more providers.
→ Static analyzer matched reverse-shell: unambiguous remote-code-execution shape in the install path.
SPCSN Taro runtime API entry
Local-first, BYOK multi-host ops + SEO control plane — scan, diagnose and fix across 12 hosts from your own machine.
→ Credential read (reads-github-tokens, reads-gitlab-tokens, reads-gcp-creds, reads-aws-creds, reads-ai-api-keys) paired with dest-via-hostname-var destination — classic exfiltration signature.
P2P AI Document Agent - 全局安装后执行 `bolloon` 启动产品
→ Credential read (reads-ai-api-keys, reads-seed-phrase) paired with http-to-public-ip, dest-via-hostname-var destination — classic exfiltration signature.
SMS Phone Verification API using AWS SNS HTTP API with Hono server on Cloudflare Workers
AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 51 skills, 11 catalogs (439 CVEs / 177 CWEs / 805 ATT&CK + ICS / 170 ATLAS / 468 D3FEND / 8888 RFCs), 35 jurisdictions, 10-class catalog gap detector + budget gate,
→ Worm self-propagation: package reads .npmrc _authToken AND invokes npm publish in install-path code. Shai-Hulud-class shape — no legitimate package re-publishes OTHER packages from the user's machine.
Unified Ethereum dev toolkit — Ganache-compatible API powered by Foundry (Forge + Cast + Anvil + Chisel) with LevelDB persistence
Switchboard plugin for the PROOF command line interface.
Claws — Terminal Control Bridge for VS Code. One command to install.
→ Worm self-propagation: package reads .npmrc _authToken AND invokes npm publish in install-path code. Shai-Hulud-class shape — no legitimate package re-publishes OTHER packages from the user's machine.
Consolidated Xema OS kernel wire contracts — pure types + zod schemas for the 32 kernel protocol surfaces. One package, one npm scope, wildcard per-surface subpath exports. No framework/runtime deps.
Node.js in your browser. Just like that.
→ Credential read (reads-ai-api-keys) paired with http-to-public-ip destination — classic exfiltration signature.
ACTAgent ACP runtime backend with plugin-owned session and transport management.
ACTAgent Amazon Bedrock provider plugin with model discovery, embeddings, and guardrail support.
cue — Agent Profile Manager for Claude Code & Codex. Pick a profile, launch with the right skills, MCPs, and plugins.
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Node.js in your browser. Just like that.
→ Credential read (reads-ai-api-keys) paired with http-to-public-ip destination — classic exfiltration signature.
Background jobs plugin for AdminForth to run and manage long tasks from resources
AI-aware security scanner for VS Code — code vulnerabilities, LLM risks, secrets, dependencies, MCP & agent security
→ Credential read (reads-github-tokens, reads-aws-creds, reads-ai-api-keys, reads-azure-creds) paired with webhook-bin destination — classic exfiltration signature.
The cli specific package
Node.js integration layer for Autodesk Forge
Harper is an open-source Node.js performance platform that unifies database, cache, application, and messaging layers into one in-memory process.
→ Credential read (reads-aws-creds) paired with http-to-public-ip destination — classic exfiltration signature.
Harper is an open-source Node.js performance platform that unifies database, cache, application, and messaging layers into one in-memory process.
→ Credential read (reads-aws-creds) paired with http-to-public-ip destination — classic exfiltration signature.
Identity module for user management, authentication and authorization.
Hierarchical deterministic (HD) wallet and DID document management for OwlMeans identity.
Project subsystem bootstrapper CLI
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Dashboard plugin for AdminForth
AI agent plugin for AdminForth with tool-based workflows and persistent chat sessions
Pinclaw Claude Code bridge — discovers local Claude Code sessions and syncs their state to Pinclaw cloud (read-only v1).
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Unified LLM API with automatic model discovery and provider configuration
Coding agent CLI with read, bash, edit, write tools and session management
Totem LLM – Your Private AI. Run a self-hosted AI assistant locally on Linux, macOS, or Windows.
→ Credential read (reads-npmrc, reads-ai-api-keys) paired with dest-via-hostname-var destination — classic exfiltration signature.
Engineering discipline and workflow guardrails for AI coding agents (Claude, Cursor, Codex, Gemini).
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
logging step
→ Static analyzer matched curl-pipe-bash: unambiguous remote-code-execution shape in the install path.
Types for Microsoft Graph objects
Microsoft Application Insights Common JavaScript Library
JavaScript library of crypto standards.
A comprehensive list of all free email domain providers
Zero Knowledge Provable JSON
A deploy plugin for warp contracts
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
A decentralized NoSQL database powered by Arweave.
A decentralized NoSQL database powered by Arweave.
→ No suspicious destination, no remote-exec shape — 3 known-vendor host(s), 1 other host(s).
A decentralized NoSQL database powered by Arweave.
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s), 1 other host(s).
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
WeaveDB on Execution Machine.
→ No suspicious destination, no remote-exec shape — 1 other host(s).
A decentralized NoSQL database powered by Arweave.
→ No suspicious destination, no remote-exec shape — 2 other host(s).
A deploy plugin for warp contracts

→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).
→ No suspicious destination, no remote-exec shape — 1 known-vendor host(s).

[Documentation](../docs/docs/pages/api/hbsig.mdx)
`cwao-units` runs [AO compatible units](https://ao.arweave.dev/#/spec) for CosmWasm.
`cwao-tools` makes CosmWasm contract development & testing too easy.