@recombine-ai/bosun
IDE for prompt engineers. Works best with [Recombine AI platform](https://recombine.ai?utm_source=github.bosun)
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:build/client/_app/immutable/chunks/BqYZT6mz.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/entry/app.CE1yZowM.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/9.Td5mdQc9.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/3.CCm10CUg.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | net-exec-file:build/client/_app/immutable/nodes/2.DZ1cMXf3.js | AI (source-diff): SvelteKit client bundle; network calls are fetch API and dynamic imports, not dropper behavior. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/2.DZ1cMXf3.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/18.B8hhkZZh.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/17.BTYNQV25.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/chunks/DgnCUaz1.js | AI (source-diff): Standard SvelteKit/Vite minified build output; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/chunks/0e_4hQ6g.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/chunks/yPd1epTY.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/entry/app.Bpgxjy-s.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/9.B5srlcvO.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/17.Bn7AdwZ5.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/3.CWbDFdJc.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | net-exec-file:build/client/_app/immutable/nodes/2.DuwVz5hs.js | AI (source-diff): Browser fetch + dynamic import in SvelteKit client bundle; normal SPA pattern, not dropper malware. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/2.DuwVz5hs.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/18.D6rkjSXS.js | AI (source-diff): Standard Vite/SvelteKit minified build output; not obfuscation. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/9.DatTKw7a.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/17.CgqWHP0Y.js | AI (source-diff): Standard SvelteKit/Vite minified build output; content-hash filenames are normal for this package. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/18.BV7lLFx7.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/2.COX-RTiI.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | net-exec-file:build/client/_app/immutable/nodes/2.COX-RTiI.js | AI (source-diff): Network calls are navigator.clipboard; dynamic patterns are Svelte runtime boilerplate, not dropper behavior. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/nodes/3.CCDyeAHw.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/entry/app.DoUqDuhT.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/chunks/CAnrK2Rl.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | obfuscated-file:build/client/_app/immutable/chunks/CD54oo-Q.js | AI (source-diff): Standard SvelteKit/Vite minified build output. | ai | |
| source-diff | large-new-source-files | AI (source-diff): SvelteKit build generates many content-hashed chunk files per build; expected for this package type. | ai | |
| semgrep | semgrep:env-spread | AI (semgrep): CLI tool spreading process.env into child process spawn — standard pattern, not exfiltration. | ai | |
| phantom-deps | phantom-dep:@tailwindcss/typography | AI (phantom-deps): Tailwind plugin; referenced in config, not directly imported. | ai | |
| phantom-deps | phantom-dep:@tailwindcss/forms | AI (phantom-deps): Tailwind plugin; referenced in config, not directly imported. | ai | |
| phantom-deps | phantom-dep:svelte-dnd-action | AI (phantom-deps): Svelte UI library; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:@types/papaparse | AI (phantom-deps): Type definitions for frontend library; not expected to be directly imported. | ai | |
| phantom-deps | phantom-dep:@iconify/svelte | AI (phantom-deps): Svelte icon library; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:@popperjs/core | AI (phantom-deps): Frontend UI dependency; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:monaco-editor | AI (phantom-deps): Frontend editor component; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:vis-timeline | AI (phantom-deps): Frontend visualization library; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:tailwindcss | AI (phantom-deps): CSS framework; referenced in config files, not CLI. | ai | |
| phantom-deps | phantom-dep:googleapis | AI (phantom-deps): Backend dependency referenced in config but not directly imported in CLI entry. | ai | |
| phantom-deps | phantom-dep:papaparse | AI (phantom-deps): Frontend CSV library; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:vis-data | AI (phantom-deps): Frontend visualization library; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:bits-ui | AI (phantom-deps): Svelte UI component library; used in frontend, not CLI. | ai | |
| phantom-deps | phantom-dep:moment | AI (phantom-deps): Frontend dependency declared in package.json but not imported in CLI entry point. | ai | |
| phantom-deps | phantom-dep:xss | AI (phantom-deps): Frontend dependency declared in package.json but not imported in CLI entry point. | ai | |
| phantom-deps | phantom-dep:tsx | AI (phantom-deps): SvelteKit project; tsx is a build/dev tool referenced in config, not directly imported in CLI. | ai |
Versions (showing 6 of 6)
| Version | Deps | Published |
|---|---|---|
| 0.9.1 | 32 / 26 | |
| 0.9.0 | 32 / 26 | |
| 0.8.3 | 30 / 26 | |
| 0.8.2 | 30 / 26 | |
| 0.8.1 | 30 / 24 | |
| 0.8.0 | 30 / 24 |
v0.9.1
10 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.9.0
10 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.8.3
10 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.8.2
3 findingsSpreading entire process.env into an object — may capture all secrets 78 | cwd: process.cwd(), 79 | stdio: 'inherit', > 80 | env: { 81 | ...process.env, 82 | ...envConfig,
Spreading entire process.env into an object — may capture all secrets 94 | cwd: process.cwd(), 95 | stdio: 'inherit', > 96 | env: { 97 | ...process.env, 98 | ...envConfig,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.8.1
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.8.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.