AI 低代码平台「低代码 + 零代码」双驱动!低代码可一键生成前后端代码;零代码可 5 分钟搭建系统;AI Skills 一句话画流程、设计表单、生成整套系统。内置 AI聊天、知识库、流程编排、MCP插件等,兼容主流大模型。引领「AI 生成 → 在线配置 → 代码生成 → 手工合并->AI修改」开发模式,消除 Java 项目 80% 的重复工作,提效而不失灵活。
Drift inferred · capture-to-capture
- HIGH code analysis flagged committed secret ×6, dynamic code execution ×8 in jeecgboot/JeecgBoot
transport http counts 0 tools · 0 res
· 0 prompts
permission surface via code analysis
no tools enumerated yet for this server.
prompt-surface
shipped agent-instruction files + hidden-content / dangerous-code findings —
quoted from the analyzed source
analyzed commit b0990c0 · analyzer v17 · 1h ago
skills & prompt files 2
danger signals14
- dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecg-boot/jeecg-module-system/jeecg-system-biz/src/main/resources/static/generic/build/pdf.js:6598
this.compiledGlyphs[character] = new Function('c', 'size', js); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/hooks/jeecg/useAdaptiveWidth.ts:44
let flag = new Function(`return ${innerWidth} ${key}`)(); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/router/helper/routeHelper.ts:47
item.meta.title = new Function('t', `return ${item.meta.title}`)(t); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/utils/common/compUtils.ts:594
item.slotTitle = new Function('t', `return ${item.slotTitle}`)(t); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/utils/index.ts:434
return new Function(`return ${str}`)(); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/views/super/online/cgform/hooks/auto/useCustomHook.ts:73
const fun = new Function(executeCode)(); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/views/super/online/cgform/hooks/auto/useListButton.ts:633
return new Function(`return ${r}`)(); - dynamic code executionnew Function()jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/views/super/online/graphreport/auto/hooks/useChartRender.ts:241
new Function('onClick', 'headId', `${jsCode}`)(onClick, headId); - committed secretOpenAI keyjeecgboot-JeecgBoot-b0990c0/jeecg-boot/jeecg-module-system/jeecg-system-start/src/main/resources/flyway/sql/mysql/V3.8.0_2__airag_init_db.sql:185
sk-cgQ…(29 chars, redacted) - committed secretcommitted .envjeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/.env:1
env file shipped with populated values - committed secretcommitted .envjeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/.env.development:1
env file shipped with populated values - committed secretcommitted .envjeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/.env.docker:1
env file shipped with populated values - committed secretcommitted .envjeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/.env.dockercloud:1
env file shipped with populated values - committed secretcommitted .envjeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/.env.production:1
env file shipped with populated values
evidence-backed
findings quoted directly from the published source artifact — not inferred
filesystem 4
- fs jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/build/utils.ts :1
import fs from 'fs'; - fs jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/build/vite/plugin/theme-plugin/preprocessor/less/index.ts :2
import fs from 'fs'; - fs jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/electron/script/buildBefore.ts :2
import fs from 'fs'; - fs jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/electron/utils/index.ts :1
import fs from 'fs';
shell / exec 1
- shell jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/layouts/default/sider/useLayoutSider.ts :64
exec();
network 7
- net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/components/Table/src/hooks/useDataSource.ts :70
fetch(params); - net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/components/Table/src/hooks/useTableForm.ts :41
fetch({ searchInfo: info, page: 1 }); - net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/components/onlinePreview/open-jssdk.es.js :1
var e={658:function(e,t,n){function r(e){return r="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructo - net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/utils/http/axios/Axios.ts :1
import type { AxiosRequestConfig, AxiosInstance, AxiosResponse, AxiosError } from 'axios'; - net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/utils/http/axios/axiosCancel.ts :1
import type { AxiosRequestConfig, Canceler } from 'axios'; - net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/utils/http/axios/axiosTransform.ts :4
import type { AxiosRequestConfig, AxiosResponse } from 'axios'; - net jeecgboot-JeecgBoot-b0990c0/jeecgboot-vue3/src/utils/http/axios/index.ts :4
import type { AxiosResponse } from 'axios';
declared dependencies 152
- @jeecg/aiflow@3.9.2-beta
- @logicflow/core@^2.1.2
- @logicflow/extension@^2.1.4
- @logicflow/vue-node-registry@^1.1.3
- @iconify/iconify@^3.1.1
- @ant-design/colors@^7.2.1
- @ant-design/icons-vue@^7.0.1
- @vue/shared@^3.5.22
- @vueuse/core@^10.11.1
- @tinymce/tinymce-vue@4.0.7
- @zxcvbn-ts/core@^3.0.4
- ant-design-vue@^4.2.6
- axios@^1.12.2
- @vant/area-data@^1.5.2
- clipboard@^2.0.11
- codemirror@^5.65.20
- cron-parser@^4.9.0
- cropperjs@^1.6.2
- crypto-js@^4.2.0
- dayjs@^1.11.18
- dom-align@^1.12.4
- echarts@^5.6.0
- emoji-mart-vue-fast@^15.0.5
- enquire.js@^2.1.6
- intro.js@^7.2.0
- lodash-es@^4.17.21
- lodash.get@^4.4.2
- markdown-it@^14.1.0
- markdown-it-link-attributes@^4.0.1
- event-source-polyfill@^1.0.31
- highlight.js@^11.11.1
- @traptitech/markdown-it-katex@^3.6.0
- md5@^2.3.0
- mockjs@^1.1.0
- nprogress@^0.2.0
- path-to-regexp@^6.3.0
- pinia@2.1.7
- print-js@^1.6.0
- pinyin-pro@^3.27.0
- qs@^6.14.0
- qrcode@^1.5.4
- resize-observer-polyfill@^1.5.1
- showdown@^2.1.0
- sortablejs@^1.15.6
- swagger-ui-dist@^5.29.3
- tinymce@6.6.2
- vditor@^3.11.2
- vue@^3.5.22
- vue-cropper@^0.6.5
- vue-cropperjs@^5.0.0
- vue-i18n@^9.14.5
- vue-infinite-scroll@^2.0.2
- vue-print-nb-jeecg@^1.0.13
- vue-router@^4.5.1
- vue-types@^5.1.3
- vuedraggable@^4.1.0
- vxe-table@4.13.31
- vxe-pc-ui@4.6.12
- vxe-table-plugin-antd@4.0.8
- xe-utils@3.5.26
- xss@^1.0.15
- vue-grid-layout-v3@^3.1.2
- lunar-javascript@^1.7.5
- perfect-scrollbar@^1.5.6
- vue-color@^3.3.3
- @commitlint/cli@^18.6.1
- @commitlint/config-conventional@^18.6.3
- @iconify/json@^2.2.394
- @purge-icons/generated@^0.10.0
- unplugin-icons@^0.22.0
- @types/codemirror@^5.60.16
- @types/crypto-js@^4.2.2
- @types/fs-extra@^11.0.4
- @types/inquirer@^9.0.9
- @types/intro.js@^5.1.5
- @types/jest@^29.5.14
- @types/lodash-es@^4.17.12
- @types/mockjs@^1.0.10
- @types/node@^20.19.20
- @types/nprogress@^0.2.3
- @types/qrcode@^1.5.5
- @types/qs@^6.14.0
- @types/pinyin@^2.10.2
- @types/showdown@^2.0.6
- @types/sortablejs@^1.15.8
- @typescript-eslint/eslint-plugin@^6.21.0
- @typescript-eslint/parser@^6.21.0
- @vitejs/plugin-vue@^6.0.6
- @vitejs/plugin-vue-jsx@^5.1.5
- @vue/compiler-sfc@^3.5.22
- @vue/test-utils@^2.4.6
- autoprefixer@^10.4.21
- commitizen@^4.3.1
- conventional-changelog-cli@^4.1.0
- cross-env@^7.0.3
- cz-git@^1.12.0
- czg@^1.12.0
- dotenv@^16.6.1
- eslint@^8.57.1
- eslint-config-prettier@^9.1.2
- eslint-define-config@^2.1.0
- eslint-plugin-jest@^27.9.0
- eslint-plugin-prettier@^5.5.4
- eslint-plugin-vue@^9.33.0
- esno@^4.8.0
- fs-extra@^11.3.2
- http-server@^14.1.1
- husky@^8.0.3
- inquirer@^9.3.8
- is-ci@^3.0.1
- jest@^29.7.0
- less@^4.4.2
- lint-staged@15.2.2
- npm-run-all@^4.1.5
- picocolors@^1.1.1
- postcss@^8.5.6
- postcss-html@^1.8.0
- postcss-less@^6.0.0
- prettier@^3.6.2
- pretty-quick@^4.2.2
- rimraf@^5.0.10
- rollup@4.52.5
- rollup-plugin-visualizer@5.14.0
- stylelint@^16.25.0
- stylelint-config-prettier@^9.0.5
- stylelint-config-recommended@^14.0.1
- stylelint-config-recommended-vue@^1.6.1
- stylelint-config-standard@^36.0.1
- stylelint-order@^6.0.4
- ts-jest@^29.4.4
- ts-node@^10.9.2
- typescript@^5.9.3
- unplugin-vue-components@~0.24.1
- vite@^7.3.3
- vite-plugin-compression@^0.5.1
- vite-plugin-html@^3.2.2
- vite-plugin-mkcert@^1.17.9
- vite-plugin-mock@^2.9.8
- vite-plugin-optimize-persist@^0.1.2
- vite-plugin-package-config@^0.1.1
- vite-plugin-purge-icons@^0.10.0
- vite-plugin-svg-icons@^2.0.1
- vite-plugin-pwa@^1.1.0
- workbox-window@^7.3.0
- vite-plugin-qiankun@^1.0.15
- vite-plugin-vue-setup-extend-plus@^0.1.0
- unocss@^66.6.8
- vue-eslint-parser@^9.4.3
- vue-tsc@^1.8.27
- dingtalk-jsapi@^3.2.0
- big.js@^6.2.2
- tinycolor2@1.6.0