@clinebot/core
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| typosquat | typosquat.levenshtein:cors | AI (typosquat): @clinebot/core is a scoped monorepo package, not a typosquat of cors; name collision is coincidental. | ai | |
| semgrep | semgrep:env-spread | AI (semgrep): Spreading process.env into child_process.spawn is standard practice for bash executor tools. | ai | |
| semgrep | semgrep:silent-process-exec | AI (semgrep): Detached background process is the documented session-host launch pattern for this agent runtime. | ai | |
| semgrep | semgrep:silent-process-exec-var | AI (semgrep): Same session-host spawn as silent-process-exec; stable false positive for this package. | ai | |
| semgrep | semgrep:shady-links-raw-ip | AI (semgrep): 127.0.0.1 is a localhost OAuth callback URL, not an exfiltration endpoint. | ai | |
| semgrep | semgrep:base64-decode | AI (semgrep): Base64 decode used for auth token handling; no obfuscation or payload hiding present. | ai | |
| npm-metadata | suspicious-initial-version | AI (npm-metadata): 0.0.0 is a monorepo workspace convention for @clinebot packages, not a throwaway indicator. | ai |
Versions (showing 23 of 23)
| Version | Deps | Published |
|---|---|---|
| 0.0.37 | 20 / 2 | |
| 0.0.36 | 20 / 2 | |
| 0.0.35 | 19 / 2 | |
| 0.0.34 | 19 / 2 | |
| 0.0.33 | 19 / 2 | |
| 0.0.32 | 19 / 2 | |
| 0.0.30 | 19 / 2 | |
| 0.0.29 | 19 / 2 | |
| 0.0.28 | 16 / 2 | |
| 0.0.27 | 16 / 2 | |
| 0.0.26 | 16 / 2 | |
| 0.0.25 | 16 / 2 | |
| 0.0.24 | 16 / 2 | |
| 0.0.23 | 16 / 2 | |
| 0.0.11 | 16 / 0 | |
| 0.0.10 | 16 / 0 | |
| 0.0.7 | 15 / 0 | |
| 0.0.6 | 15 / 0 | |
| 0.0.5 | 7 / 0 | |
| 0.0.4 | 6 / 0 | |
| 0.0.3 | 6 / 0 | |
| 0.0.2 | 6 / 0 | |
| 0.0.0 | 8 / 0 |
v0.0.37
4 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.36
4 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.35
4 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.34
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.33
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.32
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.30
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.29
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 246 | const child = spawn(transport.command, transport.args ?? [], { 247 | cwd: transport.cwd, > 248 | env: { 249 | ...process.env, 250 | ...(transport.env ?? {}),
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 76 | ); 77 | > 78 | const child = spawn(command[0] ?? launcher, command.slice(1), { 79 | detached: true, 80 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.28
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 71 | detached: true, 72 | stdio: "ignore", > 73 | env: { 74 | ...process.env, 75 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.27
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 71 | detached: true, 72 | stdio: "ignore", > 73 | env: { 74 | ...process.env, 75 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.26
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 71 | detached: true, 72 | stdio: "ignore", > 73 | env: { 74 | ...process.env, 75 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.25
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 71 | detached: true, 72 | stdio: "ignore", > 73 | env: { 74 | ...process.env, 75 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.24
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 71 | detached: true, 72 | stdio: "ignore", > 73 | env: { 74 | ...process.env, 75 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.23
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 68 | ]; 69 | > 70 | const child = spawn(launcher, args, { 71 | detached: true, 72 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 71 | detached: true, 72 | stdio: "ignore", > 73 | env: { 74 | ...process.env, 75 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 66 | const child = spawn(config.executable, config.args, { 67 | cwd: config.cwd, > 68 | env: { ...process.env, ...config.env }, 69 | stdio: ["pipe", "pipe", "pipe"], 70 | detached: !isWindows,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.11
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 82 | ]; 83 | > 84 | const child = spawn(launcher, args, { 85 | detached: true, 86 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 82 | ]; 83 | > 84 | const child = spawn(launcher, args, { 85 | detached: true, 86 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 85 | detached: true, 86 | stdio: "ignore", > 87 | env: { 88 | ...process.env, 89 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.10
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 82 | ]; 83 | > 84 | const child = spawn(launcher, args, { 85 | detached: true, 86 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 82 | ]; 83 | > 84 | const child = spawn(launcher, args, { 85 | detached: true, 86 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 85 | detached: true, 86 | stdio: "ignore", > 87 | env: { 88 | ...process.env, 89 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.7
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 73 | ]; 74 | > 75 | const child = spawn(launcher, args, { 76 | detached: true, 77 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 73 | ]; 74 | > 75 | const child = spawn(launcher, args, { 76 | detached: true, 77 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 76 | detached: true, 77 | stdio: "ignore", > 78 | env: { 79 | ...process.env, 80 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.6
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 66 | ]; 67 | > 68 | const child = spawn(launcher, args, { 69 | detached: true, 70 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 66 | ]; 67 | > 68 | const child = spawn(launcher, args, { 69 | detached: true, 70 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 69 | detached: true, 70 | stdio: "ignore", > 71 | env: { 72 | ...process.env, 73 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.5
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 67 | detached: true, 68 | stdio: "ignore", > 69 | env: { 70 | ...process.env, 71 | CLINE_NO_INTERACTIVE: "1",
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.4
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 67 | detached: true, 68 | stdio: "ignore", > 69 | env: { 70 | ...process.env, 71 | CLINE_NO_INTERACTIVE: "1",
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.3
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 67 | detached: true, 68 | stdio: "ignore", > 69 | env: { 70 | ...process.env, 71 | CLINE_NO_INTERACTIVE: "1",
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.2
6 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 64 | ]; 65 | > 66 | const child = spawn(launcher, args, { 67 | detached: true, 68 | stdio: "ignore",
Spreading entire process.env into an object — may capture all secrets 67 | detached: true, 68 | stdio: "ignore", > 69 | env: { 70 | ...process.env, 71 | CLINE_NO_INTERACTIVE: "1",
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.0
5 findingsPackage name '@clinebot/core' is 1 edit(s) away from popular package 'cors'.
Spreading entire process.env into an object — may capture all secrets 79 | const child = spawn(shell, shellArgs, { 80 | cwd, > 81 | env: { ...process.env, ...env }, 82 | stdio: ["pipe", "pipe", "pipe"], 83 | // On Unix, place command in its own process group so abort can kill descendants too.
Silent detached process — runs invisibly in the background (reverse shells, miners) 56 | entry && isLikelyScriptEntryPath(entry) ? [entry, ...startArgs] : startArgs; 57 | > 58 | const child = spawn(launcher, args, { 59 | detached: true, 60 | stdio: "ignore",
Silent detached process — runs invisibly in the background (reverse shells, miners) 56 | entry && isLikelyScriptEntryPath(entry) ? [entry, ...startArgs] : startArgs; 57 | > 58 | const child = spawn(launcher, args, { 59 | detached: true, 60 | stdio: "ignore",
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.