AI Security Review
scanned 4d ago · by lpm-firewall-aiNo confirmed malicious attack surface. Runtime behavior implements local guardrail checks and optional integrations using caller-provided clients.
Decision evidence
public snapshot- package.json has no lifecycle scripts and exposes only dist/index.js.
- dist/rules.js bidi/zero-width characters are literal normalization targets, not concealed control flow.
- dist/index.js only dynamically imports node:async_hooks for scoped context isolation.
- No filesystem, shell, eval/vm, credential harvesting, or direct network primitives found in dist/*.js.
- dist/adapters.js invokes only caller-supplied cloud clients through explicit opt-in guardrail adapters.
- README.md contains normal product documentation; no reviewer/scanner-directed manipulation found.
Source & flagged code
3 flagged · loading sourcePackage text addresses the security reviewer or scanner and tries to influence the review outcome.
README.mdView on unpkgSource contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/rules.jsView on unpkg · L103A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/rules.jsView on unpkg