registry  /  @apholdings/jensen-web-ui  /  1.1.2

@apholdings/jensen-web-ui@1.1.2

Reusable web UI components for AI chat interfaces powered by @apholdings/jensen-ai

AI Security Review

scanned 1h ago · by lpm-firewall-ai

No confirmed malicious attack surface was established. Network and storage behavior is package-aligned for a browser AI chat UI: user-configured model discovery, document fetching, local token storage, and sandboxed user-requested code execution.

Static reason
One or more suspicious static signals were detected.
Trigger
Runtime use of exported UI components or tools by an embedding application/user.
Impact
No evidence of unconsented install-time execution, exfiltration, destructive behavior, or persistence.
Mechanism
Browser UI utilities with sandboxed tool execution and user-configured fetches
Rationale
Static inspection shows suspicious primitives are expected functionality for a web AI UI and are user/runtime invoked, with no lifecycle hooks or hardcoded exfiltration path. The remote tarball dependency is a supply-chain risk indicator but not evidence this package version is malicious.
Evidence
package.jsondist/index.jssrc/utils/auth-token.tssrc/utils/proxy-utils.tssrc/utils/model-discovery.tssrc/tools/extract-document.tssrc/tools/javascript-repl.tssrc/components/SandboxedIframe.tssrc/storage/backends/indexeddb-storage-backend.ts
Network endpoints6
cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgzapi.anthropic.comlocalhost:11434localhost:8080localhost:8000localhost:1234

Decision evidence

public snapshot
AI called this Clean at 86.0% confidence as Benign with medium false-positive risk.
Evidence for block
  • package.json pins xlsx to remote tarball https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz
  • src/tools/javascript-repl.ts exposes a user-invoked JavaScript REPL tool
  • src/utils/auth-token.ts stores a prompted auth token in browser localStorage
Evidence against
  • package.json has no preinstall/install/postinstall lifecycle hooks or bin entry
  • dist/index.js is an export barrel, not import-time execution logic
  • src/tools/javascript-repl.ts runs supplied code only when the exported tool is invoked, inside SandboxIframe
  • src/components/SandboxedIframe.ts uses iframe sandbox allow-scripts/allow-modals and does not include allow-same-origin
  • src/utils/model-discovery.ts fetches user-configured local/provider model endpoints for discovery
  • No child_process, filesystem mutation, credential harvesting, exfiltration endpoint, persistence, or agent control-surface writes found
Behavioral surface
Source
EnvironmentVarsEvalNetwork
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 146 file(s), 1.07 MB of source, external domains: accounts.google.com, ads.google.com, adservice.google.com, api.anthropic.com, api.example.com, apis.google.com, app.intercom.io, appleid.cdn-apple.com, arxiv.org, berufsinfomat.prod.portal.ams.at, cdn.getpinwheel.com, cdn.plaid.com, cdn.tailwindcss.com, client-api.arkoselabs.com, corsproxy.io, developers.cloudflare.com, esm.run, esm.sh, example.com, googleads.g.doubleclick.net, i.ds.at, js.intercomcdn.com, js.stripe.com, maps.googleapis.com, money-dev.x.com, money-staging.x.com, money.x.com, pagead2.googlesyndication.com, payments-dev.x.com, payments-prod.x.com, payments-staging.x.com, recaptcha.net, sdk.dv.socure.io, sdn.money-dev.x.com, sdn.money-staging.x.com, sdn.money.x.com, sdn.payments-dev.x.com, sdn.payments-prod.x.com, sdn.payments-staging.x.com, securepubads.g.doubleclick.net, static.ads-twitter.com, t3.chat, tpc.googlesyndication.com, twitter.com, widget.intercom.io, www.ams.at, www.cloudflare.com, www.derstandard.at, www.google-analytics.com, www.google.com

Source & flagged code

1 flagged · loading source
package.jsonView file
Remote tarball dependency specs: xlsx@https://cdn.sheetjs.com/xlsx-0.20.3/xlsx-0.20.3.tgz
Medium
Remote Tarball Dependency

Package manifest contains a dependency pinned to a remote tarball URL.

package.jsonView on unpkg

Findings

3 Medium4 Low
MediumNetwork
MediumEnvironment Vars
MediumRemote Tarball Dependencypackage.json
LowScripts Present
LowEval
LowHigh Entropy Strings
LowUrl Strings