Is cruss-agent safe to install?

cruss-agent passed Sigil's automated six-phase security scan with no findings. Verdict: LOW RISK.

What security issues were found in cruss-agent?

No security issues were detected in cruss-agent during automated analysis.

Scans/npm/cruss-agent

cruss-agent

npm

Summary

cruss-agent v1.0.6 passed all six phases of Sigil's automated security scan with no findings detected. The scan analyzed 3 files for install hooks, dangerous code patterns, network exfiltration, credential access, obfuscation, provenance, prompt injection, and skill security signals.

LOW RISK(0)

v1.0.6

21 March 2026, 20:16 UTC

by Sigil Bot

Risk Score

Findings

Files Scanned

Provenance

Registry

https://www.npmjs.com/package/cruss-agent/v/1.0.6

Scanned From

https://registry.npmjs.org/cruss-agent/-/cruss-agent-1.0.6.tgz

No findings detected. This package passed all 3 file scans with a verdict of LOW RISK.

Badge

Markdown

[![Sigil Scan](https://sigilsec.ai/badge/npm/cruss-agent)](https://sigilsec.ai/scans/6F0C67B9-6C47-4A9B-B261-67C72DE946DE)

HTML

<a href="https://sigilsec.ai/scans/6F0C67B9-6C47-4A9B-B261-67C72DE946DE"><img src="https://sigilsec.ai/badge/npm/cruss-agent" alt="Sigil Scan"></a>

Run This Scan Yourself

Scan your own packages

Run Sigil locally to audit any package before it touches your codebase.

curl -sSL https://sigilsec.ai/install.sh | sh

Read the docs →Free. Apache 2.0.

Early Access

Get cloud scanning, threat intel, and CI/CD integration.

Join 150+ developers on the waitlist.

Get threat intelligence and product updates

Security research, new threat signatures, and product updates. No spam.

Other npm scans

nodebb-plugin-pdf-secure2

v1.3.8

CRITICAL RISK121

@webspire/mcp

v0.8.0

HIGH RISK36

agent-ping

v1.0.9

LOW RISK8

agentshield-sdk

v7.4.0

CRITICAL RISK1092

@techsologic/unolock-agent

v2.0.0

CRITICAL RISK50

Believe this result is incorrect? Request a review or see our Terms of Service and Methodology.

Scanned bySigil Bot

← Back to Scan Database