AI Security Review
scanned 3h ago · by lpm-firewall-aiNo confirmed malicious attack surface is established. The package is a compiled ESM kernel of pure logic, type-like ports, registries, and helper factories with no lifecycle execution.
Static reason
High-risk behavior combination matched malicious policy.
Trigger
Importing package entrypoint or calling exported helpers
Impact
No credential harvesting, exfiltration, persistence, or unconsented agent control mutation found
Mechanism
Barrel exports and caller-invoked pure/domain helper functions
Rationale
Static source inspection shows scanner hits are noisy: the flagged Unicode is an optional BOM matcher in Markdown front-matter parsing, and dangerous primitives are absent or only caller-supplied port abstractions. No install-time/import-time execution, exfiltration, persistence, destructive action, or AI-agent control hijack is present.
Evidence
package.jsondist/index.jsdist/domain/doc-quality-logic.jsdist/domain/models.jsdist/shared/atlassian.logic.jsdist/ports/binary-artifacts.js
Decision evidence
public snapshotAI called this Clean at 93.0% confidence as Benign with low false-positive risk.
Evidence for block
- dist/domain/doc-quality-logic.js contains an embedded U+FEFF only as an optional BOM in a front-matter regex, not bidi control flow.
- dist/ports/binary-artifacts.js can store/delete caller-supplied blobs through injected backends, but no filesystem or network backend is included here.
Evidence against
- package.json has no preinstall/install/postinstall lifecycle scripts and exposes only dist/index.js.
- dist/index.js is a barrel export of domain logic, ports, and shared helpers; no import-time execution beyond exports.
- dist/domain/doc-quality-logic.js is pure Markdown structure parsing with no I/O, process, network, eval, or child_process use.
- rg found no child_process, eval/Function, npmrc, filesystem reads/writes, or fetch implementations in runtime JS.
- Network URLs in dist/domain/models.js are static model provider configuration, not contacted by this package.
Behavioral surface
ChildProcess
HighEntropyStringsUrlStrings
NoLicense
Source & flagged code
2 flagged · loading sourcedist/domain/doc-quality-logic.jsView file
9contains invisible/control Unicode U+FEFF (zero width no-break space)
const m = content.match(/^<U+FEFF>?---[ \t]*\r?\n[\s\S]*?\r?\n---[ \t]*(?:\r?\n|$)/);
Critical
Trojan Source Unicode
Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/domain/doc-quality-logic.jsView on unpkg · L9•Trigger-reachable chain: manifest.main -> dist/index.js -> dist/domain/doc-quality-logic.js
Reachable file contains a blocking source-risk pattern.
Critical
Trigger Reachable Dangerous Capability
A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/domain/doc-quality-logic.jsView on unpkgFindings
2 Critical1 Medium4 Low
CriticalTrojan Source Unicodedist/domain/doc-quality-logic.js
CriticalTrigger Reachable Dangerous Capabilitydist/domain/doc-quality-logic.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings
LowNo License