AI Security Review
scanned 5d ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No confirmed malicious attack surface. The package has a guarded first-party editor extension install path from explicit apex CLI commands, plus normal scaffold dependency installation and self-update behavior.
Decision evidence
public snapshot- dist/chunk-TWAGSGFN.js installs bundled vscode/apex-alpine.vsix via detected editor CLI with --install-extension --force
- dist/cli.js calls offerExtension after apex new; dist/upgrade-YZN6TVNI.js calls it after apex upgrade
- dist/upgrade-YZN6TVNI.js can run npm view and npm install -g @apex-stack/core@latest when user accepts self-update
- package.json has no preinstall/install/postinstall lifecycle hooks
- VSIX contents are package-aligned syntax highlighting files; extension/package.json has no activationEvents or main executable
- child_process use is user-invoked CLI scaffolding: git init, package manager install, editor open/install
- No credential harvesting, destructive logic, broad agent config writes, or exfiltration endpoints found
- Network use is local MCP URL/default localhost and npm registry self-update/package install behavior
Source & flagged code
8 flagged · loading sourcePackage source references child process execution.
dist/chunk-TWAGSGFN.jsView on unpkg · L1Package source invokes a package manager install command at runtime.
dist/upgrade-YZN6TVNI.jsView on unpkg · L44Package source references dynamic require/import behavior.
dist/build-WKK4BCQI.jsView on unpkg · L30Package ships high-entropy non-source blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships compressed or archive-like blobs.
vscode/apex-alpine.vsixView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
vscode/apex-alpine.vsixView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/server-UVY6DFK2.jsView on unpkg