@termly-dev/cli-dev
Advanced tools
@termly-dev/cli-dev - npm Package Compare versions
@@ -291,20 +291,2 @@ const WebSocket = require('ws'); | ||
| // Handle input from mobile | ||
| // Helper: escape special characters for logging | ||
| escapeSpecialChars(data) { | ||
| return data | ||
| .replace(/\r/g, '\\r') | ||
| .replace(/\n/g, '\\n') | ||
| .replace(/\t/g, '\\t') | ||
| .replace(/\x1b/g, '\\x1b') | ||
| .replace(/\x00/g, '\\x00'); | ||
| } | ||
| // Helper: convert to hex dump | ||
| toHexDump(data, maxLength = 200) { | ||
| const bytes = Buffer.from(data, 'utf8'); | ||
| const hex = bytes.toString('hex').match(/.{1,2}/g)?.join(' ') || ''; | ||
| const truncated = hex.length > maxLength ? hex.substring(0, maxLength) + '...' : hex; | ||
| return truncated; | ||
| } | ||
| handleInput(message) { | ||
@@ -319,9 +301,2 @@ if (!this.aesKey) { | ||
| // Log decrypted input for debugging | ||
| if (process.env.DEBUG === '1' || process.argv.includes('--debug')) { | ||
| logger.debug(`WS Input received (${decrypted.length} bytes):`); | ||
| logger.debug(` Text: ${this.escapeSpecialChars(decrypted.substring(0, 100))}`); | ||
| logger.debug(` Hex: ${this.toHexDump(decrypted)}`); | ||
| } | ||
| if (this.onInputCallback) { | ||
@@ -488,9 +463,2 @@ this.onInputCallback(decrypted); | ||
| try { | ||
| // Log output before encryption for debugging | ||
| if (process.env.DEBUG === '1' || process.argv.includes('--debug')) { | ||
| logger.debug(`WS Output sending (${data.length} bytes):`); | ||
| logger.debug(` Text: ${this.escapeSpecialChars(data.substring(0, 100))}`); | ||
| logger.debug(` Hex: ${this.toHexDump(data)}`); | ||
| } | ||
| const encrypted = encrypt(data, this.aesKey); | ||
@@ -497,0 +465,0 @@ |
+1
-1
| { | ||
| "name": "@termly-dev/cli-dev", | ||
| "version": "1.1.10", | ||
| "version": "1.2.1", | ||
| "description": "Mirror your AI coding sessions to mobile - control Claude, Aider, Copilot, and 17+ tools from your phone (Development version)", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
New alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Unpublished package
Supply chain riskPackage version was not found on the registry. It may exist on a different registry and need to be configured to pull from that registry.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Unpopular package
QualityThis package is not very popular.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Improved metrics
- Number of medium quality alerts
0
-100%- Number of low supply chain risk alerts
29
-6.45%Worsened metrics
- Total package byte prevSize
170270
-0.73%- Lines of code
4147
-0.67%- Number of medium supply chain risk alerts
3
50%