AI Security Review
scanned 22h ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The package is an infrastructure deployment CLI with network, secret, git, ssh, and process execution capabilities activated by explicit commands.
Decision evidence
public snapshot- package.json has no preinstall/install/postinstall lifecycle scripts; only bin intentic -> dist/cli.js.
- dist/app.js wires user-invoked CLI commands only: init, resolve, plan, apply, adopt, restore, deployments, tunnels.
- dist/init/init.js and dist/init/scaffold-app.js run git/pnpm and write scaffold files only during explicit init.
- dist/resolve/resolve.js dynamically imports the user-provided deploy config and uses Cloudflare token only for zone discovery.
- dist/apply/apply.command.js reads artifact/.env, reconciles declared infrastructure, writes status/access files, and optionally posts to a configured Discord webhook.
- No AI-agent control-surface writes, persistence hooks, credential harvesting, or install/import-time execution found.
Source & flagged code
4 flagged · loading sourcePackage source references child process execution.
dist/init/scaffold-app.jsView on unpkg · L1Package source references dynamic require/import behavior.
dist/resolve/resolve.jsView on unpkg · L6A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/demo.jsView on unpkg · L29Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/demo.jsView on unpkg · L29