@s0nderlabs/anima-core
Always-on infrastructure for anima, the sovereign agent gateway on 0G (runtime, brain, identity, memory, storage, wallet, tool registry)
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| semgrep | semgrep:env-spread | AI (semgrep): Standard child-process spawn pattern; env spread is intentional for subprocess environment inheritance. | ai | |
| semgrep | semgrep:etc-passwd-access | AI (semgrep): Fires on a comment describing path-traversal prevention, not actual /etc/passwd access. | ai | |
| semgrep | semgrep:hex-decode | AI (semgrep): Hex decoding in test files for crypto key handling; no obfuscation pattern. | ai | |
| semgrep | semgrep:base64-decode | AI (semgrep): Base64 decode in auth test files for signed-message verification; legitimate crypto usage. | ai | |
| semgrep | semgrep:shady-links-tlds | AI (semgrep): URL is the package's own homepage (anima.s0nderlabs.xyz), not a C2 endpoint. | ai | |
| semgrep | semgrep:shady-links-raw-ip | AI (semgrep): Raw IP (169.254.169.254) appears in a test asserting that private IPs are blocked, not accessed. | ai | |
| phantom-deps | phantom-dep:@noble/hashes | AI (phantom-deps): @noble/hashes is a declared dependency; phantom-dep heuristic false positive for this package. | ai |
Versions (showing 51 of 90)
| Version | Deps | Published |
|---|---|---|
| 0.24.17 | 10 / 1 | |
| 0.24.16 | 10 / 1 | |
| 0.24.15 | 10 / 1 | |
| 0.24.14 | 10 / 1 | |
| 0.24.13 | 10 / 1 | |
| 0.24.12 | 10 / 1 | |
| 0.24.11 | 10 / 1 | |
| 0.24.10 | 10 / 1 | |
| 0.24.9 | 10 / 1 | |
| 0.24.8 | 10 / 1 | |
| 0.24.7 | 10 / 1 | |
| 0.24.6 | 10 / 1 | |
| 0.24.5 | 10 / 1 | |
| 0.24.4 | 10 / 1 | |
| 0.24.3 | 10 / 1 | |
| 0.24.2 | 10 / 1 | |
| 0.24.1 | 10 / 1 | |
| 0.24.0 | 10 / 1 | |
| 0.23.2 | 10 / 1 | |
| 0.23.1 | 10 / 1 | |
| 0.23.0 | 10 / 1 | |
| 0.22.2 | 10 / 1 | |
| 0.22.1 | 10 / 1 | |
| 0.22.0 | 10 / 1 | |
| 0.21.21 | 10 / 1 | |
| 0.21.20 | 10 / 1 | |
| 0.21.19 | 10 / 1 | |
| 0.21.18 | 10 / 1 | |
| 0.21.17 | 10 / 1 | |
| 0.21.16 | 10 / 1 | |
| 0.21.15 | 10 / 1 | |
| 0.21.14 | 10 / 1 | |
| 0.21.13 | 10 / 1 | |
| 0.21.12 | 10 / 1 | |
| 0.21.11 | 10 / 1 | |
| 0.21.10 | 10 / 1 | |
| 0.21.9 | 10 / 1 | |
| 0.21.8 | 10 / 1 | |
| 0.21.7 | 10 / 1 | |
| 0.21.6 | 10 / 1 | |
| 0.21.5 | 10 / 1 | |
| 0.21.4 | 10 / 1 | |
| 0.21.3 | 10 / 1 | |
| 0.21.2 | 10 / 1 | |
| 0.21.1 | 10 / 1 | |
| 0.21.0 | 10 / 1 | |
| 0.20.2 | 10 / 1 | |
| 0.20.1 | 10 / 1 | |
| 0.20.0 | 10 / 1 | |
| 0.19.19 | 10 / 1 | |
| 0.19.18 | 10 / 1 |
v0.24.17
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.16
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.15
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.14
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.13
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.12
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.11
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.10
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.9
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.8
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.7
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.6
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.5
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.4
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.3
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.23.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.23.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.23.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.22.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.22.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.22.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.21
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.20
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.19
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.18
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.17
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.16
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.15
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.14
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.13
7 findingsSpreading entire process.env into an object — may capture all secrets 52 | private async spawnAndInitialize(timeoutMs: number): Promise<void> { 53 | const proc = spawn(this.server.command, this.server.args ?? [], { > 54 | env: { ...process.env, ...(this.server.env ?? {}) }, 55 | stdio: ['pipe', 'pipe', 'pipe'], 56 | })
Accessing /etc/passwd or /etc/shadow — credential harvesting on Linux 102 | /** 103 | * Returns a reader that refuses to escape the agent's memory directory. > 104 | * Prevents `../../etc/passwd.md`-style traversal even if a malicious memory 105 | * entry steers the brain into asking for an out-of-tree path. 106 | */
Accessing /etc/passwd or /etc/shadow — credential harvesting on Linux 10 | 11 | const SENSITIVE_WRITE_TARGETS = > 12 | '/etc/[a-z]|/etc/passwd|/etc/shadow|/etc/sudoers|/boot/|/usr/local/etc/' 13 | 14 | export const DANGEROUS_PATTERNS: ReadonlyArray<readonly [RegExp, string]> = [
Accessing /etc/passwd or /etc/shadow — credential harvesting on Linux 10 | 11 | const SENSITIVE_WRITE_TARGETS = > 12 | '/etc/[a-z]|/etc/passwd|/etc/shadow|/etc/sudoers|/boot/|/usr/local/etc/' 13 | 14 | export const DANGEROUS_PATTERNS: ReadonlyArray<readonly [RegExp, string]> = [
Accessing /etc/passwd or /etc/shadow — credential harvesting on Linux 47 | }) 48 | it('denies system paths', () => { > 49 | expect(guard.check('/etc/passwd').allowed).toBe(false) 50 | expect(guard.check('/dev/sda').allowed).toBe(false) 51 | })
Accessing /etc/passwd or /etc/shadow — credential harvesting on Linux 123 | 124 | test('detect: v0.21.3 — unsupported protocol is permanent, does NOT escalate', () => { > 125 | const call = fetchCall('c4h', 'file:///etc/passwd') 126 | const result: ToolResult = { ok: false, error: 'unsupported protocol: file:' } 127 | expect(detectFetchEscalation(call, result).needed).toBe(false)
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.21.12
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.11
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.10
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.9
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.8
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.7
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.6
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.5
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.4
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.3
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.20.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.20.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.20.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.19.19
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.19.18
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.