@s0nderlabs/anima-plugin-system
Filesystem + shell + browser + skills tools plugin for anima
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| semgrep | semgrep:ssh-key-access | AI (semgrep): Fires in a test file using ~/.ssh/id_rsa as a test fixture path, not actual credential access. | ai | |
| semgrep | semgrep:shady-links-raw-ip | AI (semgrep): All instances are in test files using localhost/127.0.0.1 as test fixtures, not production exfiltration. | ai | |
| semgrep | semgrep:env-spread | AI (semgrep): Standard pattern for passing env vars to a child process subprocess; not exfiltration. | ai | |
| phantom-deps | phantom-dep:agent-browser | AI (phantom-deps): agent-browser is a declared runtime dependency; phantom-dep heuristic is a false positive here. | ai |
Versions (showing 51 of 92)
| Version | Deps | Published |
|---|---|---|
| 0.24.17 | 3 / 0 | |
| 0.24.16 | 3 / 0 | |
| 0.24.15 | 3 / 0 | |
| 0.24.14 | 3 / 0 | |
| 0.24.13 | 3 / 0 | |
| 0.24.12 | 3 / 0 | |
| 0.24.11 | 3 / 0 | |
| 0.24.10 | 3 / 0 | |
| 0.24.9 | 3 / 0 | |
| 0.24.8 | 3 / 0 | |
| 0.24.7 | 3 / 0 | |
| 0.24.6 | 3 / 0 | |
| 0.24.5 | 3 / 0 | |
| 0.24.4 | 3 / 0 | |
| 0.24.3 | 3 / 0 | |
| 0.24.2 | 3 / 0 | |
| 0.24.1 | 3 / 0 | |
| 0.24.0 | 3 / 0 | |
| 0.23.2 | 3 / 0 | |
| 0.23.1 | 3 / 0 | |
| 0.23.0 | 3 / 0 | |
| 0.22.2 | 3 / 0 | |
| 0.22.1 | 3 / 0 | |
| 0.22.0 | 3 / 0 | |
| 0.21.21 | 3 / 0 | |
| 0.21.20 | 3 / 0 | |
| 0.21.19 | 3 / 0 | |
| 0.21.18 | 3 / 0 | |
| 0.21.17 | 3 / 0 | |
| 0.21.16 | 3 / 0 | |
| 0.21.15 | 3 / 0 | |
| 0.21.14 | 3 / 0 | |
| 0.21.13 | 3 / 0 | |
| 0.21.12 | 3 / 0 | |
| 0.21.11 | 3 / 0 | |
| 0.21.10 | 3 / 0 | |
| 0.21.9 | 3 / 0 | |
| 0.21.8 | 3 / 0 | |
| 0.21.7 | 3 / 0 | |
| 0.21.6 | 3 / 0 | |
| 0.21.5 | 3 / 0 | |
| 0.21.4 | 3 / 0 | |
| 0.21.3 | 3 / 0 | |
| 0.21.2 | 3 / 0 | |
| 0.21.1 | 3 / 0 | |
| 0.21.0 | 3 / 0 | |
| 0.20.2 | 3 / 0 | |
| 0.20.1 | 3 / 0 | |
| 0.20.0 | 3 / 0 | |
| 0.19.19 | 3 / 0 | |
| 0.19.18 | 3 / 0 |
v0.24.17
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.16
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.15
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.14
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.13
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.12
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.11
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.10
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.9
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.8
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.7
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.6
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.5
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.4
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.3
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.24.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.23.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.23.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.23.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.22.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.22.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.22.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.21
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.20
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.19
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.18
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.17
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.16
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.15
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.14
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.13
3 findingsSpreading entire process.env into an object — may capture all secrets 179 | stdio: 'ignore', 180 | env: cachedSocketDir > 181 | ? { ...process.env, AGENT_BROWSER_SOCKET_DIR: cachedSocketDir } 182 | : process.env, 183 | timeout: 5000,
Accessing SSH keys — strong indicator of credential theft 91 | const tool = makeVisionAnalyze({ visionInfer: infer, agentDir: '/tmp/anima-test-agent' }) 92 | const out = await tool.handler({ > 93 | image_path: '~/.ssh/id_rsa', 94 | prompt: 'leak', 95 | })
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.21.12
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.11
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.10
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.9
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.8
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.7
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.6
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.5
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.4
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.3
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.21.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.20.2
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.20.1
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.20.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.19.19
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.19.18
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.