AI Security Review
scanned 14m ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a local-first whiteboard CLI that reads/writes user-selected AgentDraw scene files and serves a local editor.
Decision evidence
public snapshot- package.json has no lifecycle scripts; only bin agentdraw -> dist/index.js
- dist/index.js actions are user-invoked CLI commands for scene files, SVG import/export, gallery, and local editor
- Local server binds default 127.0.0.1:3927 and exposes only /api/scene for chosen file path
- Writes are to user-specified scene/export paths or .agentdraw/theme-gallery.html, not agent control surfaces
- spawn is limited to user-invoked background server/browser open using node/open/cmd/xdg-open
- No credential harvesting or external exfiltration endpoints found
Source & flagged code
6 flagged · loading sourcePackage contains a critical-looking secret pattern.
web-dist/assets/subset-shared.chunk-rH3zAwfJ.jsView on unpkg · L22AWS access key ID in web-dist/assets/subset-shared.chunk-rH3zAwfJ.js
web-dist/assets/subset-shared.chunk-rH3zAwfJ.jsView on unpkg · L22Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
web-dist/assets/index-CJpqzyyg.jsView on unpkg · L100Google API key in web-dist/assets/index-CJpqzyyg.js
web-dist/assets/index-CJpqzyyg.jsView on unpkg · L10Package ships high-entropy non-source blobs.
web-dist/assets/Assistant-Bold-gm-uSS1B.woff2View on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.jsView on unpkg