PkgRadar

Package evidence

@hybridaione/[email protected]

Messenger Bot Endpoint: matched "api.telegram.org/bot" — messenger-bot URL without exfil context (likely a notification handler)

Trust signals

Why this verdict

PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.

Weekly downloads
486
Versions published
74
First published
Feb 2026
Publisher
GitHub ActionsTrusted automation · −70% score

Effective trust discount applied: 70% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.

Recommended action

Review before promoting

Mixed signals: the package has indicators worth reading before allowing the update in automated dependency flows.

Inspect tarballAdd to CI gate
Block this release in CIcurl · GitHub Actions

Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.

curl -fsS https://pkgradar.com/gate/npm \
  -H "Authorization: Bearer $PKGRADAR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"specs":["@hybridaione/[email protected]"],"fail_on":"review"}'

GitHub Actions step:

- name: PkgRadar gate
  run: |
    curl -fsS https://pkgradar.com/gate/npm \
      -H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
      -H "Content-Type: application/json" \
      -d '{"specs":["@hybridaione/[email protected]"],"fail_on":"review"}'
PublisherGitHub Actions
Artifact bytes7,403,571
Previous version0.23.0
Published2026-06-11T20:03:42.936Z
SHA-256933f6dd73b9bb568e2adce6c57065858769d36a8f3f0a6bd9a451cd33c717403

Why flagged

What the scanner saw

Messenger Bot Endpoint: matched "api.telegram.org/bot" — messenger-bot URL without exfil context (likely a notification handler)

Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.

Availability ledger

available

review
Last checked
reviewRisk
15Score
0.24.0Version
Status history (1 event)
  1. newavailable · risk review · score 15 · status changed

Evidence

Static findings

13 static · 0 from release diff · showing high-signal first.

No high-signal findings — see all findings below.

Show all 13 findings (low-signal and informational)
SeverityKindPathDetailPoints
lowMessenger Bot Endpointpackage/dist/channels/telegram/api.jsmatched "api.telegram.org/bot" — messenger-bot URL without exfil context (likely a notification handler)5
lowCredential file accesspackage/container/dist/approval-policy.jsmatched ".ssh/"5
lowCredential file accesspackage/dist/security/mount-security.jsmatched ".npmrc"5
lowCredential file accesspackage/dist/policy/remote-policy-authority.jsmatched ".ssh/"5
lowCredential file accesspackage/dist/context-references/security.jsmatched ".npmrc"5
lowCredential file accesspackage/container/shared/sensitive-env.jsmatched "AWS_ACCESS_KEY"5
lowCredential file accesspackage/dist/skills/skills-guard.jsmatched ".npmrc"5
lowCredential file accesspackage/dist/workspace.jsmatched ".ssh/"5
lowCredential file accesspackage/container/src/approval-policy.tsmatched ".ssh/"5
lowInstall-time lifecycle scriptpackage.jsonpostinstall="node ./scripts/postinstall-container.mjs"5
lowObfuscation Densitypackage/container/npm-shrinkwrap.jsonhigh encoded/escaped-token density0
lowObfuscation Densitypackage/npm-shrinkwrap.jsonhigh encoded/escaped-token density0
lowObfuscation Densitypackage/container/package-lock.jsonhigh encoded/escaped-token density0

Manifest

Package metadata

Scripts42
  • audit:signaturesnode ./scripts/audit-signatures.mjs
  • buildnpm --prefix container run build && tsc && node -e "require('node:fs').chmodSync('dist/cli.js', 0o755)"
  • build:consolenpm --workspace console run build
  • build:containernode ./scripts/build-container.mjs
  • build:desktopnpm run build && npm --workspace desktop run build
  • checkbiome check .
  • check:nodenode ./scripts/check-node-version.mjs
  • cleannode -e "const fs=require('node:fs');fs.rmSync('dist',{recursive:true,force:true});fs.rmSync('console/dist',{recursive:true,force:true});fs.rmSync('container/dist',{recursive:true,force:true});fs.rmSync('desktop/dist',{recursive:true,force:true});fs.rmSync('desktop/release',{recursive:true,force:true});"
  • deps:policynode ./scripts/check-dependency-policy.mjs
  • deps:update-lockfilenpm update --package-lock-only && npm --prefix container update --package-lock-only && node ./scripts/sync-shrinkwraps.mjs
  • deps:verifynpm ci --ignore-scripts --no-audit --fund=false && npm --prefix container ci --ignore-scripts --no-audit --fund=false && npm run audit:signatures
  • desktopnpm run build:desktop && npm --workspace desktop run start
  • desktop:linuxnpm run build:desktop && npm --workspace desktop run dist:linux
  • desktop:macnpm run build:desktop && npm --workspace desktop run dist:mac
  • devtsx src/cli.ts gateway
  • dev:consoleHYBRIDCLAW_DEV_VITE_URL=http://127.0.0.1:4173 tsx src/cli.ts gateway restart && npm --workspace console run dev
  • eval:trace-judge:gateHYBRIDCLAW_DATA_DIR=/tmp/hybridclaw-trace-judge-gate HYBRIDCLAW_DISABLE_CONFIG_WATCHER=1 node -e "import('./dist/evals/trace-judge-native.js').then((m)=>m.runTraceJudgeNativeGate()).catch((err)=>{console.error(err);process.exitCode=1})"
  • eval:trace-judge:gate:liveHYBRIDCLAW_DATA_DIR=/tmp/hybridclaw-trace-judge-live-gate HYBRIDCLAW_DISABLE_CONFIG_WATCHER=1 node -e "import('./dist/evals/trace-judge-native.js').then((m)=>m.runTraceJudgeNativeGate({live:true})).catch((err)=>{console.error(err);process.exitCode=1})"
  • formatbiome check --write .
  • gatewaytsx src/cli.ts gateway
  • linttsc --noEmit --noUnusedLocals --noUnusedParameters && npm --workspace console run typecheck && npm --workspace desktop run typecheck
  • postinstallnode ./scripts/postinstall-container.mjs
  • prebuildnpm run check:node && npm run build:console
  • prepacknpm run clean && npm run build && npm run release:check
  • preparecommand -v git >/dev/null 2>&1 && test -w .git/config && husky || true
  • pretest:unitnpm run check:node
  • publish:drynpm publish --access public --dry-run
  • release:checknpm run version:check && node ./scripts/check-dependency-policy.mjs && node ./scripts/release-check.mjs
  • setupnpm --prefix container install
  • startnode dist/cli.js gateway
  • …and 12 more.
Dependencies41
  • @huggingface/transformers3.8.1
  • @modelcontextprotocol/sdk1.29.0
  • @ngrok/ngrok1.7.0
  • @opentelemetry/api1.9.1
  • @opentelemetry/exporter-trace-otlp-grpc0.218.0
  • @opentelemetry/exporter-trace-otlp-http0.218.0
  • @opentelemetry/resources2.7.1
  • @opentelemetry/sdk-node0.218.0
  • @sentry/node10.56.0
  • @slack/bolt4.7.3
  • @whiskeysockets/baileys7.0.0-rc11
  • ajv8.20.0
  • amaro1.1.10
  • better-sqlite312.10.0
  • botbuilder4.23.3
  • camoufox-js0.10.2
  • cron-parser5.5.0
  • csv-parse6.2.1
  • discord.js14.26.4
  • docx9.7.1
  • iconv-lite0.7.2
  • imapflow1.3.5
  • impit0.13.0
  • mailparser3.9.9
  • marked17.0.4
  • node-pty1.1.0
  • nodemailer8.0.10
  • pdf-lib1.17.1
  • pdfjs-dist5.5.207
  • pino9.14.0
  • …and 11 more.
Optional dependencies1
  • appdmg0.6.6