registry  /  @cw-ui/asio-neon-themes  /  0.0.1-security

@cw-ui/asio-neon-themes@0.0.1-security

security holding package

AI Security Review

scanned 34m ago · by lpm-firewall-ai

No confirmed attack surface in this package version. It is a metadata-only security holding package.

Static reason
No blocking static signals were detected.
Trigger
None
Impact
None established
Mechanism
No executable behavior
Rationale
Direct inspection found only package metadata and a holding-package README; neither defines executable behavior. The README's historical claim does not establish malicious behavior in this published version.
Evidence
package.jsonREADME.md

Decision evidence

public snapshot
AI called this Clean at 99.0% confidence as Benign with low false-positive risk.
Evidence for block
  • README.md states this is a security holding package for previously removed code.
Evidence against
  • package.json has no scripts, bin, or code entrypoints.
  • Only README.md and package.json are present.
  • No executable source, dependencies, network calls, or install hooks found.
Behavioral surface
SourceNo risky source behavior triggered.
Supply chainNo supply-chain packaging signals triggered.
Manifest
NoLicense
scanned 0 file(s), 0 B of source

Source & flagged code

0 flagged
No flagged code excerpts are attached to this scan.

Findings

2 Low
LowNo License
LowAi Review Evidence