registry  /  @acorex/platform  /  20.9.0

@acorex/platform@20.9.0

This library was generated with [Nx](https://nx.dev).

AI Security Review

scanned 1d ago · by lpm-firewall-ai

No confirmed malicious attack surface is established. The package is a compiled Angular platform library with runtime expression and query features aligned to its UI/workflow purpose.

Static reason
One or more suspicious static signals were detected.
Trigger
consumer imports and uses Angular platform modules at runtime
Impact
No install-time execution, exfiltration, persistence, or unconsented control-surface mutation identified.
Mechanism
user-configured workflow/widget expression evaluation and platform query dispatch
Rationale
Static inspection found suspicious primitives, but they are package-aligned runtime features for Angular workflow/widget evaluation, storage, and query handling. There is no lifecycle execution, credential/file harvesting, exfiltration endpoint, persistence, or AI-agent control hijack behavior.
Evidence
package.jsonfesm2022/acorex-platform-workflow.mjsfesm2022/acorex-platform-core.mjsfesm2022/acorex-platform-runtime.mjsfesm2022/acorex-platform-common.mjsfesm2022/acorex-platform-auth.mjsfesm2022/acorex-platform-layout-widgets.mjsfesm2022/acorex-platform-contracts.mjs
Network endpoints10
avatar.iran.liara.run/public/t.me/{value}wa.me/{value}instagram.com/{value}linkedin.com/in/{value}twitter.com/{value}facebook.com/{value}github.com/{value}youtube.com/@{value}discord.com/users/{value}

Decision evidence

public snapshot
AI called this Clean at 90.0% confidence as Benign with low false-positive risk.
Evidence for block
    Evidence against
    • package.json has no lifecycle scripts, bin, or native/binary entrypoints; exports are Angular fesm2022 modules.
    • fesm2022/acorex-platform-workflow.mjs uses new Function only to evaluate caller-provided workflow/template expressions at runtime.
    • fesm2022/acorex-platform-core.mjs uses new Function for context expression evaluation, not install/import-time code.
    • Network-like fetch references are platform query executor methods or user/runtime URL handling, not hardcoded exfiltration endpoints.
    • Storage use in fesm2022/acorex-platform-auth.mjs and common.mjs is app session/settings localStorage/sessionStorage behavior.
    • No child_process, filesystem writes, persistence hooks, AI-agent control-surface writes, or credential harvesting found.
    Behavioral surface
    Source
    ChildProcessEvalNetwork
    Supply chain
    HighEntropyStringsUrlStrings
    Manifest
    NoLicense
    scanned 43 file(s), 6.19 MB of source, external domains: avatar.iran.liara.run, discord.com, facebook.com, github.com, google.com, instagram.com, linkedin.com, t.me, twitter.com, wa.me, www.w3.org, youtube.com

    Source & flagged code

    5 flagged · loading source
    fesm2022/acorex-platform-contracts.mjsView file
    2091patternName = generic_password severity = medium line = 2091 matchedText = password...or',
    Medium
    Secret Pattern

    Package contains a possible secret pattern.

    fesm2022/acorex-platform-contracts.mjsView on unpkg · L2091
    fesm2022/acorex-platform-workflow.mjsView file
    333// Evaluating the expression within the created scope L334: const sandbox = new Function('scope', `return (async function() { with (scope) { return ${expression}; } })();`); L335: const result = await sandbox(scope);
    Low
    Eval

    Package source references a known benign dynamic code generation pattern.

    fesm2022/acorex-platform-workflow.mjsView on unpkg · L333
    types/acorex-platform-layout-widget-core-contracts.d.tsView file
    45patternName = generic_password severity = medium line = 45 matchedText = password...or';
    Medium
    Secret Pattern

    Hardcoded password in types/acorex-platform-layout-widget-core-contracts.d.ts

    types/acorex-platform-layout-widget-core-contracts.d.tsView on unpkg · L45
    types/acorex-platform-layout-widgets.d.tsView file
    1347patternName = generic_password severity = medium line = 1347 matchedText = password...or';
    Medium
    Secret Pattern

    Hardcoded password in types/acorex-platform-layout-widgets.d.ts

    types/acorex-platform-layout-widgets.d.tsView on unpkg · L1347
    types/acorex-platform-contracts.d.tsView file
    1660patternName = generic_password severity = medium line = 1660 matchedText = readonly...or";
    Medium
    Secret Pattern

    Hardcoded password in types/acorex-platform-contracts.d.ts

    types/acorex-platform-contracts.d.tsView on unpkg · L1660

    Findings

    5 Medium4 Low
    MediumSecret Patternfesm2022/acorex-platform-contracts.mjs
    MediumNetwork
    MediumSecret Patterntypes/acorex-platform-layout-widget-core-contracts.d.ts
    MediumSecret Patterntypes/acorex-platform-layout-widgets.d.ts
    MediumSecret Patterntypes/acorex-platform-contracts.d.ts
    LowEvalfesm2022/acorex-platform-workflow.mjs
    LowHigh Entropy Strings
    LowUrl Strings
    LowNo License