AI Security Review
scanned 6d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package has a heavy install-time Python setup and runtime AI/agent tooling, but inspected behavior is aligned with backend, transcription, document processing, and LiteLLM features.
Decision evidence
public snapshot- package.json defines preinstall/postinstall lifecycle hooks
- scripts/postinstall.cjs runs ee/python/setup.sh during install unless skipped
- ee/python/setup.sh creates ee/python/.venv and installs Python dependencies via pip
- ee/invoke-skills/create-sandbox.ts exposes bash/readFile/writeFile tools for configured runtime skill agents
- scripts/postinstall.cjs is a documented Python environment setup with CI/SKIP_PYTHON_SETUP bypass
- ee/python/setup.sh installs declared transcription/document/LiteLLM dependencies, not hidden payloads
- ee/python/transcription/tests/__init__.py is empty; no hidden executable payload found
- dist/index.js import exports APIs; DB/LiteLLM/Python setup actions are user/runtime invoked
- Secret-like scanner hit is placeholder documentation text, not a real embedded credential
- No credential harvesting, persistence, destructive install behavior, or exfiltration endpoint found
Source & flagged code
9 flagged · loading sourceInstall-time lifecycle script matches a deterministic static-gate block pattern.
package.jsonView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage contains a critical-looking secret pattern.
dist/index.jsView on unpkg · L12659Package source references weak cryptographic algorithms.
dist/chunk-PJSDLFXL.jsView on unpkg · L39Package ships non-JavaScript build or shell helper files.
ee/python/setup.shView on unpkgPackage hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.
ee/python/transcription/tests/__init__.pyView on unpkg