AI Security Review
scanned 1h ago · by lpm-firewall-aiNo confirmed malicious attack surface. Process and filesystem actions are tied to explicit CLI scaffold, upgrade, extension-install, and MCP-server commands.
Decision evidence
public snapshot- package.json has no preinstall/install/postinstall lifecycle hook.
- dist/cli.js only runs scaffolding, git, and dependency installation after explicit apex new options.
- dist/upgrade-363YDSK6.js self-updates only a global install after an interactive or --self confirmation.
- dist/chunk-TWAGSGFN.js installs the bundled syntax extension only after a user prompt or --vscode.
- The VSIX contains only declarative language-support assets; no executable extension entrypoint.
- No credential harvesting, exfiltration endpoint, eval/vm use, or AI-agent configuration writes found.
Source & flagged code
8 flagged · loading sourcePackage source references child process execution.
dist/upgrade-363YDSK6.jsView on unpkg · L16Package source invokes a package manager install command at runtime.
dist/upgrade-363YDSK6.jsView on unpkg · L48Package source references dynamic require/import behavior.
dist/migrate-IKSGKDDU.jsView on unpkg · L23Package ships high-entropy non-source blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships compressed or archive-like blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
vscode/apex-alpine.vsixView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/cli.jsView on unpkg