AI Security Review
scanned 14d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a shared config/toolchain CLI whose risky primitives are explicit maintenance commands that mutate project config, locks, git state, or publish ecosystem packages.
Decision evidence
public snapshot- dist/cli.js uses child_process spawnSync for git, bun, and npm commands in user-invoked CLI modes.
- dist/cli.js sync path can write project config files and run bun install unless --no-install is passed.
- dist/cli.js train mode can run npm view/npm publish across ecosystem repos.
- package.json has no preinstall/install/postinstall hook; prepare is only lefthook install for this package workflow.
- README.md documents check/sync/scan/train behavior matching dist/cli.js functionality.
- dist/cli.js command gate requires explicit check/sync/scan/train CLI invocation; import does not run sync behavior.
- No credential/env harvesting, secret scanning, remote payload loading, AI-agent control-surface writes, or hidden exfiltration found.
- Network-capable npm/git/bun operations are release/toolchain maintenance actions and package-aligned.
Source & flagged code
3 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/cli.jsView on unpkgPackage source invokes a package manager install command at runtime.
dist/cli.jsView on unpkg · L291