Self-hosted AI coding agent control room for Claude Code, Cursor CLI, OpenAI Codex, Gemini CLI, Qwen Code, and OpenCode with chat, files, shell, Git, orchestration, API keys, Telegram, MCP, plugins, themes, and desktop/server deployment.
- capability exposureinferred+35
- supply-chainattested+6
- trust mitigatorsmixed−3
attestedinferredmixed
The A–E grade is our heuristic synthesis — a "review this" prompt, not a verdict. Each factor is tagged by what backs it: attested (a verifiable record), reported (a third party's claim), or inferred (our own heuristic, e.g. permissions). See methodology.
graded 12m ago · see ecosystem CVEs →
no known CVEs for this server.
- highdangerous code
env-secret-flows-to-network-js: A process environment value (often a secret/token) flows into a network call — possible credential exfiltration. (/tmp/obs-code-8QXiFT/package/dist-
analyzed v1.51.2 · analyzer v17 · 1d ago
danger signals2
- suspicious endpointapi.telegram.orgpackage/dist-server/server/services/telegram/telegram-http-client.js:17
const API_BASE = 'https://api.telegram.org/bot'; - suspicious endpointapi.telegram.orgpackage/server/services/telegram/telegram-http-client.js:19
const API_BASE = 'https://api.telegram.org/bot';
- supply-chain+6 supply-chain hub →
[](https://mcpobservatory.com/servers/npm:@pixelbyte-software/pixcode/security) Heuristic, inferred signals — false positives (legitimately powerful tools, forks, language ports) are expected. Treat each as "review this", not a verdict. See the ecosystem-wide picture on the security hub, or the fleet security of alicomert.