Trust signals
Why this verdict
PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.
- Versions published
- 381Established · −30% score
- First published
- Jul 2025
- Publisher
- acoliver
Effective trust discount applied: −30% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.
Recommended action
Review before promotingMixed signals: the package has indicators worth reading before allowing the update in automated dependency flows.
Block this release in CIcurl · GitHub Actions
Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer $PKGRADAR_TOKEN" \
-H "Content-Type: application/json" \
-d '{"specs":["@vybestack/[email protected]"],"fail_on":"review"}'GitHub Actions step:
- name: PkgRadar gate
run: |
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
-H "Content-Type: application/json" \
-d '{"specs":["@vybestack/[email protected]"],"fail_on":"review"}'Why flagged
What the scanner saw
Credential file access: matched ".ssh/"
Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.
Availability ledger
available
Status history (1 event)
- new → available · risk review · score 24 · status changed
Evidence
Static findings
8 static · 0 from release diff · showing high-signal first.
No high-signal findings — see all findings below.
Show all 8 findings (low-signal and informational)
| Severity | Kind | Path | Detail | Points |
|---|---|---|---|---|
| low | Credential file access | package/dist/src/utils/privacy/ConversationDataRedactor.test.js | matched ".ssh/" | 5 |
| low | Credential file access | package/dist/src/ui/utils/historyExportUtils.js | matched "AWS_SECRET_ACCESS_KEY" | 5 |
| low | Credential file access | package/dist/src/ui/utils/historyExportUtils.test.js | matched "AWS_SECRET_ACCESS_KEY" | 5 |
| low | Credential file access | package/dist/src/utils/sandbox-ssh.test.js | matched ".ssh/" | 5 |
| low | Credential file access | package/dist/src/utils/sandbox.js | matched "GOOGLE_APPLICATION_CREDENTIALS" | 5 |
| low | Credential file access | package/dist/src/utils/sandbox.test.js | matched ".ssh/" | 5 |
| low | Credential file access | package/dist/src/ui/utils/secureInputHandler.test.js | matched ".ssh/" | 5 |
| low | Obfuscation Density | package/dist/src/auth/codex-success-image.js | high encoded/escaped-token density | 0 |
Manifest
Package metadata
Scripts15
buildnode ../../scripts/build_package.js && node ../../scripts/chmod_executable.js dist/index.jsdebugnode --inspect-brk dist/index.jsformatprettier --write .linteslint . --ext .ts,.tsxprepacknpm run buildprerelease:depsnode ../../scripts/bind_package_dependencies.jsprerelease:versionnode ../../scripts/bind_package_version.jsstartnode dist/index.jstestvitest runtest:civitest runtest:ci:coveredvitest run -c vitest.ci.covered.config.tstest:ci:fastvitest run -c vitest.ci.fast.config.tstest:integrationvitest run -c vitest.integration.config.tstest:legacyOPENAI_RESPONSES_DISABLE=true vitest run -t "legacy|gpt-3.5-turbo"typechecktsc --noEmit
Dependencies44
@agentclientprotocol/sdk^0.14.1@anthropic-ai/sdk^0.55.1@dqbd/tiktoken^1.0.21@google/genai1.30.0@iarna/toml^2.2.5@modelcontextprotocol/sdk^1.25.2@types/update-notifier^6.0.8@vybestack/llxprt-code-core0.10.0-nightly.260519.2a7ec008aansi-regex^6.2.2chalk^5.3.0cli-spinners2.9.2clipboardy^4.0.0command-exists^1.2.9comment-json^4.5.0diff^8.0.3dotenv^17.1.0extract-zip^2.0.1fzf^0.5.2glob^12.0.0gradient-string2.0.2highlight.js^11.11.1inknpm:@jrichman/[email protected]ink-gradient^3.0.0ink-select-input^6.2.0ink-spinner^5.0.0ink-testing-library^4.0.0lowlight^3.3.0mime-types^3.0.1mnemonist^0.40.3open^10.1.2- …and 14 more.