AI Security Review
scanned 3d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package performs local guardrail evaluation and optional, caller-configured integrations.
Decision evidence
public snapshot- package.json has no preinstall/install/postinstall scripts and exposes only dist/index.js.
- dist/rules.js bidi-like characters are deliberate zero-width detection patterns and documentation examples.
- dist/index.js registers only @cendor/core in-process interceptors after explicit install() or scoped() calls.
- dist/embeddings.js dynamically imports a caller-selected local transformers module; no remote loader is present.
- dist/adapters.js calls only caller-supplied moderation/cloud client methods.
- No filesystem writes, shell execution, credential harvesting, or built-in network requests were found.
Source & flagged code
4 flagged · loading sourcePackage text addresses the security reviewer or scanner and tries to influence the review outcome.
README.mdView on unpkgSource contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/rules.jsView on unpkg · L103A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/rules.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/rules.jsView on unpkg