AI Security Review
scanned 6d ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. Risky primitives are aligned with an OpenCode workflow automation plugin and explicit CLI/tool actions, with no lifecycle execution or hidden payload.
Decision evidence
public snapshot- package.json has no install/postinstall lifecycle hooks; main is dist/index.js and bin is explicit dist/sanitize_cli.js.
- dist/index.js exports an OpenCode plugin; network calls are ClickUp/GitHub/OpenCode/localhost/CDP integrations tied to plugin tools/config.
- dist/index.js child_process usage is git/systemctl for repository workflow and QA browser service operations, not install/import-time execution.
- dist/index.js dynamic Function appears in explicit QA browser command actions, not hidden payload loading.
- dist/sanitize_cli.js is an explicit optima-sanitize-host CLI; ssh/python3/sqlite/filesystem writes are user-invoked migration/sanitization behavior.
- Secret reads resolve configured {env:...}/{file:...} references for ClickUp/GitHub auth and redact audit logs; no credential harvesting loop or exfil sink found.
Source & flagged code
5 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/index.jsView on unpkg · L14502Package source references a known benign dynamic code generation pattern.
dist/index.jsView on unpkg · L14031Package source references dynamic require/import behavior.
scripts/optima-sanitize-host.jsView on unpkg · L9Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/sanitize_cli.jsView on unpkg · L2592