AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No confirmed malicious install-time attack surface. The main residual risk is user-invoked installation of a bundled first-party editor syntax extension into VS Code-compatible editors.
Decision evidence
public snapshot- dist/chunk-TWAGSGFN.js can install bundled vscode/apex-alpine.vsix into code/cursor/windsurf/codium after prompt or --vscode.
- dist/upgrade-363YDSK6.js runs npm view and optional npm install -g @apex-stack/core@latest for CLI self-update.
- dist/upgrade-363YDSK6.js may rewrite scaffold files and bump @apex-stack/* deps when user runs apex upgrade.
- package.json has no preinstall/install/postinstall lifecycle hooks.
- dist/cli.js behavior is user-invoked CLI scaffolding: copies templates, optional npm install, optional git init.
- vscode/apex-alpine.vsix contains manifest, grammar, language config, icon/readme only; no main or activationEvents.
- dist/mcp-CH7L4GF3.js connects only to user-supplied/default local MCP URL for an explicit apex mcp command.
- No credential harvesting, destructive cleanup outside build output, remote payload download, or import-time execution found.
Source & flagged code
8 flagged · loading sourcePackage source references child process execution.
dist/upgrade-363YDSK6.jsView on unpkg · L16Package source invokes a package manager install command at runtime.
dist/upgrade-363YDSK6.jsView on unpkg · L48Package source references dynamic require/import behavior.
dist/chunk-S77I7EPX.jsView on unpkg · L57Package ships high-entropy non-source blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships compressed or archive-like blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
vscode/apex-alpine.vsixView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/build-J64UPHXY.jsView on unpkg