AI Security Review
scanned 7h ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The package is a runtime-neutral server layer with authenticated controllers, OAuth clients, GitHub integrations, web search and LLM proxy functionality activated by application routes or service calls.
Decision evidence
public snapshot- Runtime controllers proxy OAuth, GitHub, web search, and LLM requests using configured credentials.
- ContainerAgentExecutor builds job bodies that include repo clone coordinates and short-lived tokens for package-aligned agent runs.
- package.json has no preinstall/install/postinstall lifecycle hooks or bin entrypoint.
- dist/index.js only re-exports server modules; no import-time execution beyond module loading.
- dist/crypto/encoding.d.ts secret hit is only PEM/PKCS#8 documentation, not an embedded key.
- dist/modules/tasks/TaskSourceController.js defines Hono routes and delegates to configured services; no dynamic require found.
- No child_process, fs writes, persistence hooks, or AI-agent control-surface file drops found in package source.
- Network calls are runtime/user-flow aligned and include SSRF guards for user-configured SearXNG/local runner URLs.
Source & flagged code
7 flagged · loading sourcePackage contains a critical-looking secret pattern.
dist/crypto/encoding.d.tsView on unpkg · L7RSA private key in dist/crypto/encoding.d.ts
dist/crypto/encoding.d.tsView on unpkg · L7RSA private key in dist/crypto/encoding.d.ts
dist/crypto/encoding.d.tsView on unpkg · L8Package source references dynamic require/import behavior.
dist/modules/tasks/TaskSourceController.jsView on unpkg · L188RSA private key in dist/github/GitHubAppAuth.d.ts
dist/github/GitHubAppAuth.d.tsView on unpkg · L4