AI Security Review
scanned 2h ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. The package contains powerful SDK/CLI capabilities, but they are package-aligned and require explicit user configuration or runtime events.
Decision evidence
public snapshot- package.json exposes bin/holoscript.cjs and broad SDK exports, with no preinstall/install/postinstall hooks
- dist/chunk-BQJ3YBF3.js shell trait can spawn configured commands on shell:exec events
- dist/cli/holoscript-runner.js creates host capabilities for explicit CLI/daemon flows, including file/process/network access
- No install-time lifecycle execution in package.json
- bin/holoscript.cjs only loads dist/cli/holoscript-runner.cjs as a user-invoked CLI
- Network endpoints are package-aligned or user-configured: mcp.holoscript.net, api.rendernetwork.com, marketplace.holoscript.net, OpenAI/Slack/Discord/Telegram APIs, webhook_url fields
- dist/chunk-GJNCFRJU.cjs new Function is an expression evaluator with denylisted dangerous patterns, not an obfuscated payload loader
- Command execution paths require explicit events, CLI daemon options, or host capabilities; no automatic import-time command execution found
- No credential harvesting loop, hardcoded exfiltration endpoint, persistence, destructive behavior, or AI-agent control-surface mutation found
Source & flagged code
10 flagged · loading sourcePackage source references child process execution.
dist/traits/index.jsView on unpkg · L15694Package source references dynamic require/import behavior.
bin/holoscript.cjsView on unpkg · L6Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/index.jsView on unpkg · L138Package source references weak cryptographic algorithms.
dist/index.jsView on unpkg · L138Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/chunk-TYNRXRHF.jsView on unpkg · L311Source writes installer persistence such as shell profile or service configuration.
dist/chunk-TYNRXRHF.jsView on unpkg · L311Source executes local commands and sends command output to an external endpoint.
dist/chunk-IFW5IW4L.cjsView on unpkg · L1366A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/chunk-BQJ3YBF3.jsView on unpkg · L1364