AI Security Review
scanned 2d ago · by lpm-firewall-aiNo confirmed malicious attack surface is established. The package is a bundled Vue AI chat/UI component library with browser-only attachment download, preview iframe, markdown editor, and dynamic component helpers.
Decision evidence
public snapshot- Bundled UI code can fetch/download user attachment URLs with credentials in farris.x-ui.esm.js:239.
- Runtime UI helpers can load configured scripts/modules for markdown/mermaid/monaco/dynamic components in farris.x-ui.esm.js:5922,10099,12643.
- package.json has no install/preinstall/postinstall scripts and only main/module/types/style fields.
- No child_process, filesystem APIs, process.env harvesting, cookie/localStorage theft, or beacon/exfiltration endpoints found in inspected entrypoints.
- Network use is UI-aligned: attachment download, iframe preview messaging, CDN editor/markdown assets, and user/config supplied preview/component URLs.
- new Function at farris.x-ui.esm.js:9996 parses ECharts option text rendered in the markdown editor path, not install/import-time payload execution.
- Bidi/invisible Unicode hits are from bundled unicode/HTML entity regex/data tables, not control-flow-hiding source instructions.
Source & flagged code
4 flagged · loading sourceSource contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
farris.x-ui.esm.jsView on unpkg · L1331A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
farris.x-ui.esm.jsView on unpkgPackage source references dynamic require/import behavior.
farris.x-ui.esm.jsView on unpkg · L10112Package source references a known benign dynamic code generation pattern.
farris.x-ui.esm.jsView on unpkg · L9995