registry  /  @10stars/config  /  16.0.2

@10stars/config@16.0.2

AI Security Review

scanned 9d ago · by lpm-firewall-ai

No confirmed malicious attack surface was established. The package is a developer configuration CLI with potentially broad project mutations only after explicit command invocation.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source
Trigger
User runs the config CLI, especially config prepare, lint, typecheck, run, or killPort.
Impact
Can modify project config files, node_modules patches, symlinks, and run local developer commands, but no stealth install-time or exfiltration behavior was found.
Mechanism
User-invoked developer tooling and project configuration writes
Rationale
Static inspection shows risky primitives, but they are part of an explicit development CLI and not npm install-time behavior. No concrete exfiltration, persistence, remote payload loading, or AI-agent control hijack was found.
Evidence
package.jsonsrc/index.tssrc/manage-overrides.tssrc/vscode-config.tssrc/patch-vanilla-extract.tssrc/link-packages.tssrc/runner.ts.oxfmtrc.json.vscode/extensions.json.vscode/settings.jsonnode_modules/**/@vanilla-extract/integration/dist/*.jsnode_modules/@scope/package symlinks

Decision evidence

public snapshot
AI called this Clean at 86.0% confidence as Benign with low false-positive risk.
Evidence for block
  • src/index.ts exposes user-invoked commands that run bunx tools, husky, and killPort shell commands
  • src/manage-overrides.ts can rewrite the consumer package.json overrides and run bun install when config prepare is invoked
  • src/vscode-config.ts writes .vscode/extensions.json and .vscode/settings.json on config prepare
  • src/patch-vanilla-extract.ts rewrites installed @vanilla-extract files under node_modules on config prepare
Evidence against
  • package.json has no install/postinstall/prepare lifecycle hook; only prepublishOnly for publisher-side use
  • bin entry src/index.ts requires explicit CLI invocation and prints help by default
  • No fetch/http/curl/wget or package-specific exfiltration endpoints found
  • No credential harvesting, home-directory agent config writes, MCP/Claude/Codex/Cursor control-surface mutation, or persistence found
  • Child process usage is package-aligned developer tooling: tsc, oxfmt, oxlint, husky, bun install, and port cleanup
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsFilesystemShell
Supply chainNo supply-chain packaging signals triggered.
Manifest
NoLicense
scanned 7 file(s), 25.1 KB of source

Source & flagged code

4 flagged · loading source
src/vscode-config.tsView file
1import { execSync } from "node:child_process" L2: import fs from "node:fs/promises"
High
Child Process

Package source references child process execution.

src/vscode-config.tsView on unpkg · L1
src/link-packages.tsView file
21export const checkIsMonorepo = async (pathPkg: string) => { L22: const pkgJson = await import(path.join(pathPkg, `package.json`)) L23: return Boolean(pkgJson.workspaces)
Medium
Dynamic Require

Package source references dynamic require/import behavior.

src/link-packages.tsView on unpkg · L21
src/manage-overrides.tsView file
60console.info(`Written: ${pkgPath}`) L61: execSync(`bunx oxfmt ${pkgPath}`, { cwd, stdio: `inherit` }) L62:
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

src/manage-overrides.tsView on unpkg · L60
src/index.tsView file
matchType = previous_version_dangerous_delta matchedPackage = @10stars/config@16.0.1 matchedIdentity = npm:QDEwc3RhcnMvY29uZmln:16.0.1 similarity = 0.833 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

src/index.tsView on unpkg

Findings

1 Critical3 High3 Medium4 Low
CriticalPrevious Version Dangerous Deltasrc/index.ts
HighChild Processsrc/vscode-config.ts
HighShell
HighRuntime Package Installsrc/manage-overrides.ts
MediumDynamic Requiresrc/link-packages.ts
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowNo License