AI Security Review
scanned 3h ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The package is a runtime HTTP server layer with controllers, OAuth clients, GitHub clients, and web-search proxy code activated by application routes.
Decision evidence
public snapshot- Runtime code performs user-invoked fetches to OAuth/GitHub/search providers.
- Container executor builds job specs for runner transports, but delegates dispatch to supplied transport.
- Package handles credentials/tokens as part of server auth and integration flows.
- package.json has no preinstall/install/postinstall hooks or bin entrypoints.
- dist/index.js only re-exports server modules; no import-time execution beyond module definitions observed.
- dist/crypto/encoding.d.ts secret finding is documentation for PEM formats, not an embedded key.
- dist/modules/tasks/TaskSourceController.js exposes Hono routes and OAuth callback; no dynamic require or hidden loader found.
- No fs writes, shell execution, eval/vm, native binary loading, or AI-agent control-surface mutation found by source search.
- Network use is package-aligned: GitHub/Google/Linear OAuth, GitHub API, Brave/SearXNG web search with configured credentials and SSRF guard for SearXNG.
Source & flagged code
7 flagged · loading sourcePackage contains a critical-looking secret pattern.
dist/crypto/encoding.d.tsView on unpkg · L7RSA private key in dist/crypto/encoding.d.ts
dist/crypto/encoding.d.tsView on unpkg · L7RSA private key in dist/crypto/encoding.d.ts
dist/crypto/encoding.d.tsView on unpkg · L8Package source references dynamic require/import behavior.
dist/modules/tasks/TaskSourceController.jsView on unpkg · L188RSA private key in dist/github/GitHubAppAuth.d.ts
dist/github/GitHubAppAuth.d.tsView on unpkg · L4