Package evidence
@psnext/[email protected]
Remote Payload: matched "github.com/repos/${t}/releases/latest`,{headers:{\"User-Agent\":`${Wt}-coding-agent`},signal:AbortSignal.timeout(jD)});if(!e.ok)throw new Error(`GitHub API error: ${e.status}`);return(await e.json()).tag_name.replace(/^v/,\"\")}async function VD(t,e){let n=await fetch(t,{signal:AbortSignal.timeout(qD)});if(!n.ok)throw new Error(`Failed to download: ${n.status}`);if(!n.body)throw new Error(\"No response body\");let i=UD(e);await ND(BD.fromWeb(n.body),i)}function JD(t,e){let n=[t];for(;n.length>0;){let i=n.pop();if(!i)continue;let s=FD(i,{withFileTypes:!0});for(let r of s){let o=ji(i,r.name);if(r.isFile()&&r.name===e)return o;r.isDirectory()&&n.push(o)}}return null}function QD(t){if(t.error?.message)return t.error.message;let e=t.stderr?.toString().trim();if(e)return e;let n=t.stdout?.toString().trim();return n||`exit status ${t.status??\"unknown\"}`}function Rl(t,e){let n=bk(t,e,{stdio:\"pipe\"});return!n.error&&n.status===0?null:`${t}: ${QD(n)}`}function YD(t,e,n){let i=Rl(\"tar\",[\"xzf\",t,\"-C\",e]);if(i)throw new Error(`Failed to extract ${n}: ${i}`)}function XD(){let t=process.env.SystemRoot??process.env.WINDIR;if(t){let e=ji(t,\"System32\",\"tar.exe\");if(Nf(e))return e}return\"tar.exe\"}function ZD(t,e,n){let i=[];if(hp()===\"win32\"){let s=Rl(XD(),[\"xf\",t,\"-C\",e]);if(!s)return;i.push(s);let o=Rl(\"powershell.exe\",[\"-NoLogo\",\"-NoProfile\",\"-NonInteractive\",\"-ExecutionPolicy\",\"Bypass\",\"-Command\",\"& { param($archive, $destination) $ErrorActionPreference = 'Stop'; Expand-Archive -LiteralPath $archive -DestinationPath $destination -Force }\",t,e]);if(!o)return;i.push(o)}else{let s=Rl(\"unzip\",[\"-q\",t,\"-d\",e]);if(!s)return;i.push(s);let r=Rl(\"tar\",[\"xf\",t,\"-C\",e]);if(!r)return;i.push(r)}throw new Error(`Failed to extract ${n}: ${i.join(\"; \")}`)}async function e3(t){let e=jf[t];if(!e)throw new Error(`Unknown tool: ${t}`);let n=hp(),i=$D(),s=await zD(e.repo);t===\"fd\"&&n===\"darwin\"&&i===\"x64\"&&(s=\"10.3.0\");let r=e.getAssetName(s,n,i);if(!r)throw new Error(`Unsupported platform: ${n}/${i}`);gk(Il,{recursive:!0});let o=`https://github.com/${e.repo}/releases/download"
Trust signals
Why this verdict
PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.
- Weekly downloads
- 4,860Niche · −30% score
- Versions published
- 36
- First published
- May 2026
- Publisher
- rravuri
Effective trust discount applied: −30% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.
Recommended action
Review before promotingMixed signals: the package has indicators worth reading before allowing the update in automated dependency flows.
Block this release in CIcurl · GitHub Actions
Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer $PKGRADAR_TOKEN" \
-H "Content-Type: application/json" \
-d '{"specs":["@psnext/[email protected]"],"fail_on":"review"}'GitHub Actions step:
- name: PkgRadar gate
run: |
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
-H "Content-Type: application/json" \
-d '{"specs":["@psnext/[email protected]"],"fail_on":"review"}'Why flagged
What the scanner saw
Remote Payload: matched "github.com/repos/${t}/releases/latest`,{headers:{\"User-Agent\":`${Wt}-coding-agent`},signal:AbortSignal.timeout(jD)});if(!e.ok)throw new Error(`GitHub API error: ${e.status}`);return(await e.json()).tag_name.replace(/^v/,\"\")}async function VD(t,e){let n=await fetch(t,{signal:AbortSignal.timeout(qD)});if(!n.ok)throw new Error(`Failed to download: ${n.status}`);if(!n.body)throw new Error(\"No response body\");let i=UD(e);await ND(BD.fromWeb(n.body),i)}function JD(t,e){let n=[t];for(;n.length>0;){let i=n.pop();if(!i)continue;let s=FD(i,{withFileTypes:!0});for(let r of s){let o=ji(i,r.name);if(r.isFile()&&r.name===e)return o;r.isDirectory()&&n.push(o)}}return null}function QD(t){if(t.error?.message)return t.error.message;let e=t.stderr?.toString().trim();if(e)return e;let n=t.stdout?.toString().trim();return n||`exit status ${t.status??\"unknown\"}`}function Rl(t,e){let n=bk(t,e,{stdio:\"pipe\"});return!n.error&&n.status===0?null:`${t}: ${QD(n)}`}function YD(t,e,n){let i=Rl(\"tar\",[\"xzf\",t,\"-C\",e]);if(i)throw new Error(`Failed to extract ${n}: ${i}`)}function XD(){let t=process.env.SystemRoot??process.env.WINDIR;if(t){let e=ji(t,\"System32\",\"tar.exe\");if(Nf(e))return e}return\"tar.exe\"}function ZD(t,e,n){let i=[];if(hp()===\"win32\"){let s=Rl(XD(),[\"xf\",t,\"-C\",e]);if(!s)return;i.push(s);let o=Rl(\"powershell.exe\",[\"-NoLogo\",\"-NoProfile\",\"-NonInteractive\",\"-ExecutionPolicy\",\"Bypass\",\"-Command\",\"& { param($archive, $destination) $ErrorActionPreference = 'Stop'; Expand-Archive -LiteralPath $archive -DestinationPath $destination -Force }\",t,e]);if(!o)return;i.push(o)}else{let s=Rl(\"unzip\",[\"-q\",t,\"-d\",e]);if(!s)return;i.push(s);let r=Rl(\"tar\",[\"xf\",t,\"-C\",e]);if(!r)return;i.push(r)}throw new Error(`Failed to extract ${n}: ${i.join(\"; \")}`)}async function e3(t){let e=jf[t];if(!e)throw new Error(`Unknown tool: ${t}`);let n=hp(),i=$D(),s=await zD(e.repo);t===\"fd\"&&n===\"darwin\"&&i===\"x64\"&&(s=\"10.3.0\");let r=e.getAssetName(s,n,i);if(!r)throw new Error(`Unsupported platform: ${n}/${i}`);gk(Il,{recursive:!0});let o=`https://github.com/${e.repo}/releases/download"
Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.
Availability ledger
available
Status history (1 event)
- new → available · risk review · score 86 · status changed
Evidence
Static findings
37 static · 0 from release diff · showing high-signal first.
| Severity | Kind | Path | Detail | Points |
|---|---|---|---|---|
| medium | Remote Payload | package/slingshot/index.js | matched "github.com/repos/${t}/releases/latest`,{headers:{\"User-Agent\":`${Wt}-coding-agent`},signal:AbortSignal.timeout(jD)});if(!e.ok)throw new Error(`GitHub API error: ${e.status}`);return(await e.json()).tag_name.replace(/^v/,\"\")}async function VD(t,e){let n=await fetch(t,{signal:AbortSignal.timeout(qD)});if(!n.ok)throw new Error(`Failed to download: ${n.status}`);if(!n.body)throw new Error(\"No response body\");let i=UD(e);await ND(BD.fromWeb(n.body),i)}function JD(t,e){let n=[t];for(;n.length>0;){let i=n.pop();if(!i)continue;let s=FD(i,{withFileTypes:!0});for(let r of s){let o=ji(i,r.name);if(r.isFile()&&r.name===e)return o;r.isDirectory()&&n.push(o)}}return null}function QD(t){if(t.error?.message)return t.error.message;let e=t.stderr?.toString().trim();if(e)return e;let n=t.stdout?.toString().trim();return n||`exit status ${t.status??\"unknown\"}`}function Rl(t,e){let n=bk(t,e,{stdio:\"pipe\"});return!n.error&&n.status===0?null:`${t}: ${QD(n)}`}function YD(t,e,n){let i=Rl(\"tar\",[\"xzf\",t,\"-C\",e]);if(i)throw new Error(`Failed to extract ${n}: ${i}`)}function XD(){let t=process.env.SystemRoot??process.env.WINDIR;if(t){let e=ji(t,\"System32\",\"tar.exe\");if(Nf(e))return e}return\"tar.exe\"}function ZD(t,e,n){let i=[];if(hp()===\"win32\"){let s=Rl(XD(),[\"xf\",t,\"-C\",e]);if(!s)return;i.push(s);let o=Rl(\"powershell.exe\",[\"-NoLogo\",\"-NoProfile\",\"-NonInteractive\",\"-ExecutionPolicy\",\"Bypass\",\"-Command\",\"& { param($archive, $destination) $ErrorActionPreference = 'Stop'; Expand-Archive -LiteralPath $archive -DestinationPath $destination -Force }\",t,e]);if(!o)return;i.push(o)}else{let s=Rl(\"unzip\",[\"-q\",t,\"-d\",e]);if(!s)return;i.push(s);let r=Rl(\"tar\",[\"xf\",t,\"-C\",e]);if(!r)return;i.push(r)}throw new Error(`Failed to extract ${n}: ${i.join(\"; \")}`)}async function e3(t){let e=jf[t];if(!e)throw new Error(`Unknown tool: ${t}`);let n=hp(),i=$D(),s=await zD(e.repo);t===\"fd\"&&n===\"darwin\"&&i===\"x64\"&&(s=\"10.3.0\");let r=e.getAssetName(s,n,i);if(!r)throw new Error(`Unsupported platform: ${n}/${i}`);gk(Il,{recursive:!0});let o=`https://github.com/${e.repo}/releases/download" | 12 |
| medium | Obfuscation Density | package/node_modules/@earendil-works/pi-coding-agent/npm-shrinkwrap.json | high encoded/escaped-token density | 12 |
| medium | Credential file access | package/slingshot/index.js | matched "GOOGLE_APPLICATION_CREDENTIALS" | 10 |
Show all 37 findings (low-signal and informational)
| Severity | Kind | Path | Detail | Points |
|---|---|---|---|---|
| medium | Remote Payload | package/slingshot/index.js | matched "github.com/repos/${t}/releases/latest`,{headers:{\"User-Agent\":`${Wt}-coding-agent`},signal:AbortSignal.timeout(jD)});if(!e.ok)throw new Error(`GitHub API error: ${e.status}`);return(await e.json()).tag_name.replace(/^v/,\"\")}async function VD(t,e){let n=await fetch(t,{signal:AbortSignal.timeout(qD)});if(!n.ok)throw new Error(`Failed to download: ${n.status}`);if(!n.body)throw new Error(\"No response body\");let i=UD(e);await ND(BD.fromWeb(n.body),i)}function JD(t,e){let n=[t];for(;n.length>0;){let i=n.pop();if(!i)continue;let s=FD(i,{withFileTypes:!0});for(let r of s){let o=ji(i,r.name);if(r.isFile()&&r.name===e)return o;r.isDirectory()&&n.push(o)}}return null}function QD(t){if(t.error?.message)return t.error.message;let e=t.stderr?.toString().trim();if(e)return e;let n=t.stdout?.toString().trim();return n||`exit status ${t.status??\"unknown\"}`}function Rl(t,e){let n=bk(t,e,{stdio:\"pipe\"});return!n.error&&n.status===0?null:`${t}: ${QD(n)}`}function YD(t,e,n){let i=Rl(\"tar\",[\"xzf\",t,\"-C\",e]);if(i)throw new Error(`Failed to extract ${n}: ${i}`)}function XD(){let t=process.env.SystemRoot??process.env.WINDIR;if(t){let e=ji(t,\"System32\",\"tar.exe\");if(Nf(e))return e}return\"tar.exe\"}function ZD(t,e,n){let i=[];if(hp()===\"win32\"){let s=Rl(XD(),[\"xf\",t,\"-C\",e]);if(!s)return;i.push(s);let o=Rl(\"powershell.exe\",[\"-NoLogo\",\"-NoProfile\",\"-NonInteractive\",\"-ExecutionPolicy\",\"Bypass\",\"-Command\",\"& { param($archive, $destination) $ErrorActionPreference = 'Stop'; Expand-Archive -LiteralPath $archive -DestinationPath $destination -Force }\",t,e]);if(!o)return;i.push(o)}else{let s=Rl(\"unzip\",[\"-q\",t,\"-d\",e]);if(!s)return;i.push(s);let r=Rl(\"tar\",[\"xf\",t,\"-C\",e]);if(!r)return;i.push(r)}throw new Error(`Failed to extract ${n}: ${i.join(\"; \")}`)}async function e3(t){let e=jf[t];if(!e)throw new Error(`Unknown tool: ${t}`);let n=hp(),i=$D(),s=await zD(e.repo);t===\"fd\"&&n===\"darwin\"&&i===\"x64\"&&(s=\"10.3.0\");let r=e.getAssetName(s,n,i);if(!r)throw new Error(`Unsupported platform: ${n}/${i}`);gk(Il,{recursive:!0});let o=`https://github.com/${e.repo}/releases/download" | 12 |
| medium | Obfuscation Density | package/node_modules/@earendil-works/pi-coding-agent/npm-shrinkwrap.json | high encoded/escaped-token density | 12 |
| medium | Credential file access | package/slingshot/index.js | matched "GOOGLE_APPLICATION_CREDENTIALS" | 10 |
| low | Credential file access | package/node_modules/@earendil-works/pi-coding-agent/dist/cli/args.js | matched ".azure" | 5 |
| low | Credential file access | package/node_modules/@earendil-works/pi-ai/dist/providers/azure-openai-responses.js | matched ".azure" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/nested-clients/dist-es/submodules/signin/endpoint/bdd.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/google-auth-library/build/src/auth/defaultawssecuritycredentialssupplier.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-node/dist-es/defaultProvider.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/client-bedrock-runtime/dist-es/models/enums.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@earendil-works/pi-ai/dist/env-api-keys.js | matched "GOOGLE_APPLICATION_CREDENTIALS" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-env/dist-es/fromEnv.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@smithy/core/dist-es/submodules/config/shared-ini-file-loader/getConfigFilepath.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/core/dist-es/submodules/config/shared-ini-file-loader/getCredentialsFilepath.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/credential-provider-imds/dist-es/utils/getExtendedInstanceMetadataCredentials.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/core/dist-es/submodules/config/shared-ini-file-loader/getSSOTokenFilepath.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/google-auth-library/build/src/auth/googleauth.js | matched "GOOGLE_APPLICATION_CREDENTIALS" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/core/dist-cjs/submodules/client/index.browser.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/client-bedrock-runtime/dist-cjs/index.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/core/dist-cjs/submodules/client/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-env/dist-cjs/index.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-ini/dist-cjs/index.js | matched "aws_access_key" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-login/dist-cjs/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-node/dist-cjs/index.js | matched "AWS_ACCESS_KEY" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-sso/dist-cjs/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/nested-clients/dist-cjs/submodules/signin/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/core/dist-cjs/submodules/config/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/credential-provider-imds/dist-cjs/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/node-http-handler/dist-cjs/index.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/core/dist-cjs/submodules/client/index.native.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-login/dist-es/LoginCredentialsFetcher.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@smithy/node-http-handler/dist-es/node-http-handler.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/core/dist-es/submodules/client/util-endpoints/lib/aws/partitions.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveStaticCredentials.js | matched "aws_access_key" | 5 |
| low | Credential file access | package/bin/sling.js | matched "GITHUB_TOKEN" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-sso/dist-es/validateSsoProfile.js | matched ".aws" | 5 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-ini/package.json | matched ".aws" | 3 |
| low | Credential file access | package/node_modules/@aws-sdk/credential-provider-process/package.json | matched ".aws" | 3 |
Manifest
Package metadata
Dependencies6
@earendil-works/pi-agent-corefile:../.sling-pack/earendil-works-pi-agent-core-0.75.5.tgz@earendil-works/pi-aifile:../.sling-pack/earendil-works-pi-ai-0.75.5.tgz@earendil-works/pi-coding-agentfile:../.sling-pack/earendil-works-pi-coding-agent-0.75.5.tgz@earendil-works/pi-tuifile:../.sling-pack/earendil-works-pi-tui-0.75.5.tgzsemver^7.6.0undici^7.19.1