AI Security Review
scanned 2d ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The package is a runtime-neutral HTTP server layer with user-invoked controllers and provider integrations.
Decision evidence
public snapshot- Network-capable HTTP/OAuth server code exists but appears feature-aligned, not covert.
- Credential handling is present for OAuth, GitHub App, runner, and personal secrets, but no harvesting/exfiltration path was found.
- package.json has no lifecycle hooks or bin; main only exports dist/index.js.
- dist/index.js is a barrel export for HTTP controllers, auth, crypto helpers, GitHub, persistence, and agents.
- dist/crypto/encoding.d.ts contains PEM marker documentation only; no embedded private key or secret value.
- dist/modules/tasks/TaskSourceController.js defines Hono task-source/OAuth routes gated through container services and signed state.
- Network endpoints inspected are expected providers: GitHub, Google, Linear, Brave Search, SearXNG/configured base URLs, and internal persistence RPC.
- No child_process, install-time execution, destructive persistence, prompt/reviewer manipulation, or AI-agent control-surface writes found.
Source & flagged code
7 flagged · loading sourcePackage contains a critical-looking secret pattern.
dist/crypto/encoding.d.tsView on unpkg · L7RSA private key in dist/crypto/encoding.d.ts
dist/crypto/encoding.d.tsView on unpkg · L7RSA private key in dist/crypto/encoding.d.ts
dist/crypto/encoding.d.tsView on unpkg · L8Package source references dynamic require/import behavior.
dist/modules/tasks/TaskSourceController.jsView on unpkg · L162RSA private key in dist/github/GitHubAppAuth.d.ts
dist/github/GitHubAppAuth.d.tsView on unpkg · L4