AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No malicious install-time attack surface was confirmed. Residual risk is explicit/user-prompted editor extension installation into VS Code-family editors using a bundled first-party grammar-only VSIX.
Decision evidence
public snapshot- dist/chunk-TWAGSGFN.js can install bundled vscode/apex-alpine.vsix into code/cursor/windsurf/codium after prompt or --vscode.
- dist/cli.js apex new scaffolds files, may run package-manager install and git init in the new target by default.
- dist/upgrade-363YDSK6.js apex upgrade can query npm and optionally self-update global @apex-stack/core after prompt.
- package.json has no preinstall/install/postinstall lifecycle hooks.
- vscode/apex-alpine.vsix contains only VS Code language/grammar contributions; no extension main/activation script observed.
- Network use is package-aligned: npm view/install for @apex-stack packages and user-supplied local MCP URL.
- No credential harvesting, exfiltration endpoint, destructive behavior, persistence, eval, or remote payload loader found.
Source & flagged code
8 flagged · loading sourcePackage source references child process execution.
dist/upgrade-363YDSK6.jsView on unpkg · L16Package source invokes a package manager install command at runtime.
dist/upgrade-363YDSK6.jsView on unpkg · L48Package source references dynamic require/import behavior.
dist/chunk-S77I7EPX.jsView on unpkg · L57Package ships high-entropy non-source blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships compressed or archive-like blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
vscode/apex-alpine.vsixView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/cli.jsView on unpkg