Package evidence
[email protected]
Js Hidden Powershell: Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers.
Trust signals
Why this verdict
PkgRadar discounts a release’s score when public reputation argues against novel malware. The verdict above already reflects these — the panel just explains what was applied.
- Weekly downloads
- 2,798Niche · −30% score
- Versions published
- 145
- First published
- Apr 2026
- Publisher
- leanchy
Effective trust discount applied: −30% (max across signals — discounts don’t stack). New install-lifecycle deltas vs the previous release would clear the discount.
Recommended action
Block this updateStatic evidence trips multiple high-signal indicators. Quarantine the release until the publisher validates the change or you can rule out the indicators below.
Block this release in CIcurl · GitHub Actions
Fail the build when this package version is added or upgraded. Replace $PKGRADAR_TOKEN with a Pro / Team API key from your dashboard.
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer $PKGRADAR_TOKEN" \
-H "Content-Type: application/json" \
-d '{"specs":["[email protected]"],"fail_on":"high"}'GitHub Actions step:
- name: PkgRadar gate
run: |
curl -fsS https://pkgradar.com/gate/npm \
-H "Authorization: Bearer ${{ secrets.PKGRADAR_TOKEN }}" \
-H "Content-Type: application/json" \
-d '{"specs":["[email protected]"],"fail_on":"high"}'Why flagged
What the scanner saw
Js Hidden Powershell: Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers.
Not observed: package install, lifecycle script execution, or sandbox execution. PkgRadar only inspects on-disk artifacts.
Availability ledger
available
Status history (3 events)
- available → available · risk high · score 72 · status available -> available, risk high -> high, score 104 -> 72
- available → available · risk high · score 104 · status available -> available, risk high -> high, score 76 -> 104
- new → available · risk high · score 76 · status changed
Evidence
Static findings
11 static · 0 from release diff · showing high-signal first.
| Severity | Kind | Path | Detail | Points |
|---|---|---|---|---|
| high | Js Hidden Powershell | package/src/tools/PowerShellTool/pathValidation.ts | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. | 45 |
| high | Js Hidden Powershell | package/src/utils/permissions/permissions.ts | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. | 45 |
| high | Js Hidden Powershell | package/src/utils/permissions/yoloClassifier.ts | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. | 45 |
| medium | Remote Payload | package/src/utils/plugins/installCounts.ts | matched "raw.githubusercontent.com" | 12 |
| medium | Remote Payload | package/src/utils/releaseNotes.ts | matched "raw.githubusercontent.com" | 12 |
Show all 11 findings (low-signal and informational)
| Severity | Kind | Path | Detail | Points |
|---|---|---|---|---|
| high | Js Hidden Powershell | package/src/tools/PowerShellTool/pathValidation.ts | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. | 45 |
| high | Js Hidden Powershell | package/src/utils/permissions/permissions.ts | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. | 45 |
| high | Js Hidden Powershell | package/src/utils/permissions/yoloClassifier.ts | Hidden / non-interactive PowerShell invocation in package code — `-WindowStyle Hidden`, `irm | iex`, `windowsHide: true`, or equivalent — used to download-and-run payloads on Windows installers. | 45 |
| medium | Remote Payload | package/src/utils/plugins/installCounts.ts | matched "raw.githubusercontent.com" | 12 |
| medium | Remote Payload | package/src/utils/releaseNotes.ts | matched "raw.githubusercontent.com" | 12 |
| low | Credential file access | package/src/services/api/client.ts | matched "GOOGLE_APPLICATION_CREDENTIALS" | 5 |
| low | Credential file access | package/src/utils/ide.ts | matched ".npmrc" | 5 |
| low | Credential file access | package/src/tools/BashTool/prompt.ts | matched ".ssh/" | 5 |
| low | Credential file access | package/src/utils/subprocessEnv.ts | matched "AWS_SECRET_ACCESS_KEY" | 5 |
| low | Credential file access | package/src/utils/settings/types.ts | matched ".ssh/" | 5 |
| low | Install-time lifecycle script | package.json | postinstall="node scripts/install-skills.cjs" | 5 |
Manifest
Package metadata
Scripts7
bingobun run ./bin/bingo-win.cjsbingocodebun run ./bin/bingocode-win.cjsdocs:buildvitepress build docsdocs:devvitepress dev docsdocs:previewvitepress preview docspostinstallnode scripts/install-skills.cjsstartbun run ./bin/bingo-win.cjs
Dependencies75
@alcalzone/ansi-tokenize^0.3.0@anthropic-ai/sandbox-runtime^0.0.44@anthropic-ai/sdk^0.80.0@aws-sdk/client-bedrock-runtime^3.1020.0@commander-js/extra-typings^14.0.0@growthbook/growthbook^1.6.5@modelcontextprotocol/sdk^1.29.0@opentelemetry/api-logs^0.214.0@opentelemetry/core^2.6.1@opentelemetry/resources^2.6.1@opentelemetry/sdk-logs^0.214.0@opentelemetry/sdk-metrics^2.6.1@opentelemetry/sdk-trace-base^2.6.1@opentelemetry/semantic-conventions^1.40.0ajv^8.18.0asciichart^1.5.25auto-bind^5.0.1axios^1.14.0bidi-js^1.0.3chalk^5.6.2chokidar^5.0.0cli-boxes^4.0.1code-excerpt^4.0.0commander^14.0.3diff^8.0.4emoji-regex^10.6.0env-paths^4.0.0execa^9.6.1figures^6.1.0fuse.js^7.1.0- …and 45 more.