@midscene/ios
iOS automation library for Midscene
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | net-exec-file:static/static/js/index.caeabfb7.js | AI (source-diff): Browser bundle with fetch calls; no dropper/loader behavior evident in sample. | ai | |
| source-diff | obfuscated-file:static/static/js/index.caeabfb7.js | AI (source-diff): Webpack-minified playground UI bundle; standard build artifact for this package. | ai | |
| source-diff | obfuscated-file:static/static/js/430.4af5d9bf.js | AI (source-diff): Webpack-minified frontend bundle from @midscene/playground; source maps included, no obfuscation intent. | ai | |
| source-diff | net-exec-file:static/static/js/index.bb390d06.js | AI (source-diff): Dynamic require stubs in webpack bundle; no actual network+exec dropper pattern. | ai | |
| source-diff | obfuscated-file:static/static/js/index.bb390d06.js | AI (source-diff): Webpack-minified frontend bundle; source maps included, legitimate Midscene playground UI code. | ai | |
| source-diff | net-exec-file:static/static/js/430.4af5d9bf.js | AI (source-diff): Standard webpack chunk with dynamic require stubs; not a dropper. | ai | |
| source-diff | obfuscated-file:static/static/js/index.c1613c65.js | AI (source-diff): Webpack-minified playground UI entry bundle; content shows Midscene config constants, not malicious obfuscation. | ai | |
| source-diff | net-exec-file:static/static/js/index.c1613c65.js | AI (source-diff): Frontend bundle making AI model API calls; consistent with playground UI purpose, not dropper behavior. | ai | |
| source-diff | obfuscated-file:static/static/js/index.3509da03.js | AI (source-diff): Main webpack bundle for Midscene playground UI; Midscene model config visible in sample. | ai | |
| source-diff | net-exec-file:static/static/js/index.3509da03.js | AI (source-diff): Webpack bundle for playground UI; false positive for bundled frontend assets. | ai | |
| source-diff | obfuscated-file:static/static/js/430.53da0b9c.js | AI (source-diff): Standard webpack-minified frontend bundle for the iOS playground UI; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:static/static/js/index.7ff4baf8.js | AI (source-diff): Standard webpack-minified frontend bundle for the iOS playground UI; not obfuscated malware. | ai | |
| source-diff | net-exec-file:static/static/js/index.7ff4baf8.js | AI (source-diff): Network+exec pattern is webpack module loading in a bundled UI asset, not dropper behavior. | ai | |
| source-diff | net-exec-file:static/static/js/430.53da0b9c.js | AI (source-diff): Network+exec pattern is webpack module loading in a bundled UI asset, not dropper behavior. | ai | |
| source-diff | net-exec-file:static/static/js/index.be925cd6.js | AI (source-diff): Webpack dynamic require pattern in browser bundle; not a network dropper. | ai | |
| source-diff | obfuscated-file:static/static/js/index.be925cd6.js | AI (source-diff): Webpack-minified main bundle from @midscene/playground; Midscene AI config wiring, not malware. | ai | |
| source-diff | obfuscated-file:static/static/js/463.9d3be433.js | AI (source-diff): Webpack-bundled frontend asset from @midscene/playground; standard minified UI library code, not malware. | ai | |
| source-diff | net-exec-file:static/static/js/index.aa579514.js | AI (source-diff): Webpack bundle for playground UI; network+exec pattern is normal for bundled frontend apps. | ai | |
| source-diff | obfuscated-file:static/static/js/index.aa579514.js | AI (source-diff): Webpack entry bundle from @midscene/playground; Midscene AI config code, not malware. | ai | |
| source-diff | net-exec-file:static/static/js/463.9d3be433.js | AI (source-diff): Webpack bundle for playground UI; network+exec pattern is normal for bundled frontend apps. | ai | |
| source-diff | obfuscated-file:static/static/js/index.04c353bc.js | AI (source-diff): Webpack bundle for playground UI; standard minified frontend asset. | ai | |
| source-diff | net-exec-file:static/static/js/index.04c353bc.js | AI (source-diff): Webpack bundle with network calls for AI model config; not exfiltration. | ai | |
| source-diff | net-exec-file:static/static/js/853.673222dd.js | AI (source-diff): Bundled frontend code with fetch + eval from webpack runtime; not malicious. | ai | |
| source-diff | obfuscated-file:static/static/js/853.673222dd.js | AI (source-diff): Webpack bundle for @midscene/playground UI; standard minified frontend asset. | ai | |
| source-diff | obfuscated-file:static/static/js/index.1f580227.js | AI (source-diff): Midscene playground entry bundle; minified but content is AI model config, not malware. | ai | |
| source-diff | net-exec-file:static/static/js/index.1f580227.js | AI (source-diff): Playground UI bundle making AI API calls; expected behavior for this package. | ai | |
| source-diff | obfuscated-file:static/static/js/async/271.72510be8.js | AI (source-diff): WebAssembly image-processing binding (crop, resize, seam_carve); standard minified WASM glue code. | ai | |
| source-diff | obfuscated-file:static/static/js/async/985.b167d918.js | AI (source-diff): Canvas image fallback module; standard minified frontend code, no malicious pattern. | ai | |
| source-diff | obfuscated-file:static/static/js/index.b2ea9324.js | AI (source-diff): Midscene AI client bundle; references MIDSCENE_DEBUG env vars and OpenAI config, consistent with package purpose. | ai | |
| source-diff | net-exec-file:static/static/js/index.b2ea9324.js | AI (source-diff): Webpack bundle for Midscene playground UI; network calls are to AI APIs as expected for this tool. | ai | |
| source-diff | obfuscated-file:static/static/js/148.23cd9828.js | AI (source-diff): Standard webpack bundle from @midscene/playground; Ant Design color utilities visible in sample. | ai | |
| source-diff | net-exec-file:static/static/js/148.23cd9828.js | AI (source-diff): Webpack chunk with UI library code; no actual dropper/loader pattern in sample. | ai | |
| source-diff | obfuscated-file:static/static/js/index.8f7b788e.js | AI (source-diff): Standard webpack-minified React bundle for the playground UI; not obfuscated malware. | ai | |
| source-diff | net-exec-file:static/static/js/index.8f7b788e.js | AI (source-diff): Network calls and dynamic requires are part of the bundled React app, not a dropper pattern. | ai | |
| semgrep | semgrep:api-obfuscation-reflect | AI (semgrep): Findings are in bundled static assets (third-party minified JS). Reflect.get() usage is a common bundler/transpiler pattern with no evidence of malicious intent. | ai | |
| source-diff | net-exec-file:static/static/js/603.d858267a.js | AI (source-diff): Network calls and dynamic requires are webpack's standard module system, not dropper behavior. Bundle is a UI playground asset for the midscene iOS tool. | ai | |
| source-diff | obfuscated-file:static/static/js/index.96b6047b.js | AI (source-diff): Standard webpack-minified React frontend bundle for midscene playground UI. License header and midscenejs.com references confirm legitimate origin. | ai | |
| source-diff | net-exec-file:static/static/js/index.96b6047b.js | AI (source-diff): Network calls reference midscenejs.com and bytednsdoc.com CDN assets; dynamic execution is webpack module loading. No malware indicators in the sample. | ai | |
| source-diff | obfuscated-file:static/static/js/603.d858267a.js | AI (source-diff): Standard webpack-minified frontend bundle (Ant Design color palette + React components). License header and chunk format confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:static/static/js/index.3828a5f8.js | AI (source-diff): Main webpack bundle for Midscene playground UI. Minification is expected; content shows Midscene-specific AI config, not obfuscated malware. | ai | |
| phantom-deps | phantom-dep:@inquirer/prompts | AI (phantom-deps): @inquirer/prompts is a declared runtime dependency used in CLI/bin tooling; phantom-dep false positive for this package. | ai | |
| source-diff | net-exec-file:static/static/js/index.3828a5f8.js | AI (source-diff): Webpack runtime with dynamic require stubs and fetch calls for LLM API integration. Standard pattern for a bundled AI playground app. | ai | |
| source-diff | obfuscated-file:static/static/js/index.2e8111f6.js | AI (source-diff): Standard webpack-minified main bundle for @midscene/playground UI. Minification is expected; content references Midscene's own config variables. | ai | |
| source-diff | net-exec-file:static/static/js/index.2e8111f6.js | AI (source-diff): Webpack bundle false positive: async module loading and dynamic require() in webpack chunks triggers net+exec rule without actual malicious behavior. | ai | |
| source-diff | obfuscated-file:static/static/js/index.f46d8c1b.js | AI (source-diff): Standard webpack-minified main bundle for the embedded playground UI. Minification is expected for shipped static assets. | ai | |
| source-diff | net-exec-file:static/static/js/830.aeaa53f9.js | AI (source-diff): Webpack chunk for playground UI; network calls are browser fetch APIs for AI model interaction, not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:static/static/js/830.aeaa53f9.js | AI (source-diff): Standard webpack-minified bundle for the embedded playground UI. Minification is expected for shipped static assets in this package. | ai | |
| source-diff | net-exec-file:static/static/js/index.f46d8c1b.js | AI (source-diff): Webpack bundle for playground UI; network calls are legitimate AI API calls (OpenAI etc.), consistent with the package's documented purpose. | ai | |
| source-diff | obfuscated-file:static/static/js/index.25ae0da0.js | AI (source-diff): Webpack-minified Midscene playground UI bundle. Minification is expected for shipped static web assets. | ai | |
| source-diff | net-exec-file:static/static/js/537.7bdd012b.js | AI (source-diff): False positive: webpack dynamic module loading pattern in a frontend UI bundle, not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:static/static/js/537.7bdd012b.js | AI (source-diff): Webpack-minified Ant Design color utility chunk shipped as part of the Midscene playground static UI. Not obfuscated malware. | ai | |
| source-diff | net-exec-file:static/static/js/index.25ae0da0.js | AI (source-diff): False positive: webpack dynamic require + fetch in a playground UI bundle. Content references Midscene AI config (openaiApiKey, modelName) consistent with the package's documented purpose. | ai | |
| source-diff | obfuscated-file:static/static/js/index.4fa9f4fa.js | AI (source-diff): Main webpack bundle for Midscene playground UI. Contains Midscene AI config references confirming legitimate origin. Minification expected. | ai | |
| source-diff | net-exec-file:static/static/js/index.4fa9f4fa.js | AI (source-diff): Webpack bundle for playground UI; network calls and dynamic require() are standard webpack patterns, not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:static/static/js/async/985.c09263d7.js | AI (source-diff): Webpack async chunk for canvas/image processing fallback in playground UI. Minification is expected for shipped static web assets. | ai | |
| source-diff | net-exec-file:static/static/js/807.1a069278.js | AI (source-diff): Webpack bundle for playground UI; network calls and dynamic require() are standard webpack patterns, not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:static/static/js/807.1a069278.js | AI (source-diff): Standard webpack-bundled frontend asset for Midscene playground UI (Ant Design color utilities). Minification is expected for shipped static web assets. | ai | |
| typosquat | typosquat.levenshtein:koa | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; Levenshtein comparison against short unrelated package names produces meaningless false positives. | ai | |
| typosquat | typosquat.levenshtein:zod | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; not a typosquat of zod. | ai | |
| typosquat | typosquat.levenshtein:joi | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; not a typosquat of joi. | ai | |
| typosquat | typosquat.levenshtein:qs | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; not a typosquat of qs. | ai | |
| typosquat | typosquat.levenshtein:cors | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; not a typosquat of cors. | ai | |
| typosquat | typosquat.levenshtein:got | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; not a typosquat of got. | ai | |
| typosquat | typosquat.levenshtein:axios | AI (typosquat): @midscene/ios is a scoped package in the established @midscene namespace; not a typosquat of axios. | ai |
Versions (showing 23 of 23)
| Version | Deps | Published |
|---|---|---|
| 1.7.6 | 6 / 7 | |
| 1.7.5 | 6 / 7 | |
| 1.7.4 | 6 / 7 | |
| 1.7.3 | 6 / 7 | |
| 1.7.2 | 6 / 7 | |
| 1.7.1 | 6 / 7 | |
| 1.7.0 | 6 / 7 | |
| 1.6.4 | 6 / 7 | |
| 1.6.3 | 6 / 7 | |
| 1.6.2 | 6 / 7 | |
| 1.6.1 | 6 / 7 | |
| 1.6.0 | 6 / 7 | |
| 1.5.7 | 6 / 7 | |
| 1.5.2 | 6 / 7 | |
| 1.3.6 | 6 / 7 | |
| 1.3.4 | 6 / 7 | |
| 1.3.1 | 5 / 8 | |
| 1.2.1 | 5 / 8 | |
| 1.0.4 | 5 / 8 | |
| 1.0.0 | 5 / 8 | |
| 0.30.10 | 5 / 7 | |
| 0.30.9 | 5 / 7 | |
| 0.30.8 | 5 / 7 |
v1.7.5
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.7.4
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.7.3
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.7.2
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.7.1
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.7.0
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.6.4
6 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.6.3
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.6.2
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.6.1
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.6.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.5.7
8 findingsThis version was published by a different npm account than previous versions on 2026-03-23. This could indicate a legitimate maintainer transition or an account compromise.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.5.2
7 findingsThis version was published by a different npm account than previous versions on 2026-03-04. This could indicate a legitimate maintainer transition or an account compromise.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.3.6
7 findingsThis version was published by a different npm account than previous versions on 2026-02-05. This could indicate a legitimate maintainer transition or an account compromise.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.3.4
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.3.1
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.2.1
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.4
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.0.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.30.10
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.30.9
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.30.8
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.