AI Security Review
scanned 11m ago · by lpm-firewall-aiNo confirmed attack surface exists in this extracted version. It has no lifecycle hooks, code entrypoints, network activity, or file mutation logic.
Static reason
No blocking static signals were detected.
Trigger
None.
Impact
No package-executed behavior identified.
Mechanism
Metadata-only holding package.
Rationale
Direct inspection shows this version is a metadata-only security holding package with no executable source or install hooks. The README's historical claim does not establish malicious behavior in the inspected release.
Evidence
package.jsonREADME.md
Decision evidence
public snapshotAI called this Clean at 99.0% confidence as Benign with low false-positive risk.
Evidence for block
Evidence against
- package.json has no scripts or executable entrypoints.
- package.json contains only package metadata.
- README.md describes this release as a security holding placeholder.
- Package directory contains only package.json and README.md.
Behavioral surface
NoLicense
Source & flagged code
0 flaggedNo flagged code excerpts are attached to this scan.
Findings
1 Low
LowNo License