AI Security Review
scanned 4h ago · by lpm-firewall-aiThe confirmed package-level attack surface is an npm prepare hook that rewrites the installing repository's Git hook path. This is unconsented lifecycle mutation of a broad VCS control surface, even though no hook payload directory is packaged.
Decision evidence
public snapshot- package.json defines prepare lifecycle: `git config core.hooksPath git-hooks` when run inside any git worktree.
- The lifecycle command mutates the consumer repo's `.git/config` without an install prompt or package namespace guard.
- No `git-hooks` directory exists in the package, so the hook path rewrite can disable existing project hooks or redirect future hooks.
- dist/onboarding-mnC5T2b7.js can install systemd services/sudoers, but those paths are tied to explicit onboarding prompts rather than import-time execution.
- fased.mjs only bootstraps local dist entry files and warning filters.
- dist/register.start-BbpJgyXr.js spawns the package CLI gateway on explicit `fased start`.
- The inspected `dist/agent-scope-Cb1u7HE7.js` fetch/import matches local model discovery and provider auth flows, not a confirmed remote payload loader.
- Network endpoints in scripts are package-aligned gateway/tunnel/provider endpoints.
Source & flagged code
41 flagged · loading sourcePackage source references child process execution.
dist/register.start-BbpJgyXr.jsView on unpkg · L10Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/onboarding-mnC5T2b7.jsView on unpkg · L2Source writes installer persistence such as shell profile or service configuration.
dist/onboarding-mnC5T2b7.jsView on unpkg · L2Source fetches a remote non-code asset, decodes its contents, and dynamically executes the decoded payload.
dist/agent-scope-Cb1u7HE7.jsView on unpkg · L14Package source references dynamic require/import behavior.
dist/agent-scope-Cb1u7HE7.jsView on unpkg · L350Package source references weak cryptographic algorithms.
extensions/voice-call/src/webhook-security.tsView on unpkg · L76A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/agent-scope-DHrLr5OF.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/agent-scope-DHrLr5OF.jsView on unpkgPackage ships non-JavaScript build or shell helper files.
scripts/start-managed.shView on unpkgPackage contains source files above the static scanner size ceiling.
dist/model-catalog-C2vE0j1H.jsView on unpkgHardcoded password in docs/zh-CN/gateway/tailscale.md
docs/zh-CN/gateway/tailscale.mdView on unpkg · L80Hardcoded password in docs/zh-CN/gateway/configuration.md
docs/zh-CN/gateway/configuration.mdView on unpkg · L3027Hardcoded password in docs/zh-CN/channels/bluebubbles.md
docs/zh-CN/channels/bluebubbles.mdView on unpkg · L43Hardcoded password in docs/gateway/tailscale.md
docs/gateway/tailscale.mdView on unpkg · L128Hardcoded password in docs/gateway/configuration-reference.md
docs/gateway/configuration-reference.mdView on unpkg · L629Hardcoded password in docs/gateway/configuration-reference.md
docs/gateway/configuration-reference.mdView on unpkg · L2371Hardcoded password in docs/gateway/configuration-reference.md
docs/gateway/configuration-reference.mdView on unpkg · L2398Hardcoded password in docs/channels/bluebubbles.md
docs/channels/bluebubbles.mdView on unpkg · L51Hardcoded password in extensions/irc/src/client.test.ts
extensions/irc/src/client.test.tsView on unpkg · L39Hardcoded password in extensions/bluebubbles/src/attachments.test.ts
extensions/bluebubbles/src/attachments.test.tsView on unpkg · L90Hardcoded password in extensions/bluebubbles/src/attachments.test.ts
extensions/bluebubbles/src/attachments.test.tsView on unpkg · L100Hardcoded password in extensions/bluebubbles/src/attachments.test.ts
extensions/bluebubbles/src/attachments.test.tsView on unpkg · L132Hardcoded password in extensions/bluebubbles/src/attachments.test.ts
extensions/bluebubbles/src/attachments.test.tsView on unpkg · L154Hardcoded password in extensions/bluebubbles/src/attachments.test.ts
extensions/bluebubbles/src/attachments.test.tsView on unpkg · L260Hardcoded password in extensions/bluebubbles/src/send.test.ts
extensions/bluebubbles/src/send.test.tsView on unpkg · L733Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L303Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L563Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L599Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L639Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L674Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L675Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L728Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L782Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L3088Hardcoded password in extensions/bluebubbles/src/monitor.test.ts
extensions/bluebubbles/src/monitor.test.tsView on unpkg · L3092Hardcoded password in extensions/bluebubbles/src/actions.test.ts
extensions/bluebubbles/src/actions.test.tsView on unpkg · L54Hardcoded password in extensions/bluebubbles/src/actions.test.ts
extensions/bluebubbles/src/actions.test.tsView on unpkg · L95Hardcoded password in extensions/bluebubbles/src/actions.test.ts
extensions/bluebubbles/src/actions.test.tsView on unpkg · L109Hardcoded password in extensions/bluebubbles/src/actions.test.ts
extensions/bluebubbles/src/actions.test.tsView on unpkg · L128Hardcoded password in extensions/bluebubbles/src/actions.test.ts
extensions/bluebubbles/src/actions.test.tsView on unpkg · L207