Was checking out your repo and ran it through Trustabl. The scan found 933 findings (44 high, 70 medium, 447 low). A couple of patterns that stood out were around Vercel AI agent wiring a provider shell / computer / code-execution tool and Vercel AI tool execute() evaluating code (eval / new Function). Might be worth a look to see if these are intentional or could use some review.
Add Trustabl to your CI — trustabl/trustabl-action:
- name: Trustabl scan
uses: trustabl/trustabl-action@v1
Was checking out your repo and ran it through Trustabl. The scan found 933 findings (44 high, 70 medium, 447 low). A couple of patterns that stood out were around Vercel AI agent wiring a provider shell / computer / code-execution tool and Vercel AI tool execute() evaluating code (eval / new Function). Might be worth a look to see if these are intentional or could use some review.
Add Trustabl to your CI — trustabl/trustabl-action: