PkgRadar

Package evidence

@agent-vm/[email protected]

Credential file access, Remote Payload

Recommended action

Block this update

Static evidence trips multiple high-signal indicators. Quarantine the release until the publisher validates the change or you can rule out the indicators below.

Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@agent-vm/[email protected]"],"fail_on":"high"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@agent-vm/[email protected]"],"fail_on":"high"}'
Publishershravansunder
Artifact bytes381,811
Previous version0.0.79
Published2026-05-24T23:49:33.247Z
SHA-2566e9f70ba00fe34bed58f5b6d8a6b065de3cdff6c649cbbeebe6dff9b2bfa5f93

Why flagged

What the scanner saw

Credential file access

3 candidate cluster(s) currently reference this release.

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

high
Last checked
highRisk
336Score
0.0.80Version
Status history (1 event)
  1. newavailable · risk high · score 336 · status changed

Related candidates

Linked campaigns and clusters

Repeated static TTPactive

Credential file access

372 members · evidence strength 90
Repeated static TTPactive

Credential file access

365 members · evidence strength 90
Repeated static TTPactive

Credential file access

272 members · evidence strength 70
Repeated static TTPcandidate

Credential file access

372 members · max score 349
Repeated static TTPcandidate

Credential file access

365 members · max score 100
Repeated static TTPcandidate

Credential file access

272 members · max score 1

Evidence

Static findings

13 static · 0 from release diff · showing high-signal first.

SeverityKindPathDetailPoints
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
highCredential file accessmanifest30
mediumRemote Payloadmanifest12
mediumRemote Payloadmanifest12
mediumRemote Payloadmanifest12

Manifest

Package metadata

Dependencies17
  • @agent-vm/agent-vm-worker0.0.80
  • @agent-vm/config-contracts0.0.80
  • @agent-vm/gateway-interface0.0.80
  • @agent-vm/gondolin-adapter0.0.80
  • @agent-vm/mcp-portal0.0.80
  • @agent-vm/openclaw-agent-vm-plugin0.0.80
  • @agent-vm/openclaw-gateway0.0.80
  • @agent-vm/openclaw-mcp-portal-plugin0.0.80
  • @agent-vm/secret-management0.0.80
  • @agent-vm/worker-gateway0.0.80
  • @hono/node-server^2.0.2
  • cmd-ts^0.15.0
  • execa^9.6.1
  • hono^4.12.18
  • jsonc-parser^3.3.1
  • tasuku^2.3.0
  • zod^4.4.3