AI Security Review
scanned 9d ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. Risky primitives are part of a platform server/runtime and bundled command utilities, activated by explicit runtime use rather than install or import.
Decision evidence
public snapshot- package.json has no install/preinstall/postinstall lifecycle hooks and exports only dist entrypoints.
- dist/run.mjs only starts the platform server via definePlatformConfig/startPlatformServer.
- dist/config.mjs imports default plugins but performs no install/import-time network or shell action.
- dist/start-Bkcu3Xyf.mjs network use is server/runtime-aligned: AI Gateway, Exa proxy, Slack webhook, S3, and configured platform URLs.
- dist/dist-DEUmH1sy.mjs child_process spawnSync only extracts a route manifest from a provided artifact tarball using tar in a temp directory.
- dist/js-exec-N5KEZBH7-yV-xrF3D.mjs implements a user-invoked sandbox command, not package install/import execution.
Source & flagged code
7 flagged · loading sourcePackage source references child process execution.
dist/start-BXs2tRMp.cjsView on unpkg · L22429Package source references a known benign dynamic code generation pattern.
dist/chunk-TN7HHBQW-D_SK6w5n.cjsView on unpkg · L17Package source references dynamic require/import behavior.
dist/wc-LF7NU4LA-C4FhC6BH.cjsView on unpkg · L1Source reaches cloud instance metadata or link-local credential endpoints.
dist/dist-DEUmH1sy.mjsView on unpkg · L7Source writes installer persistence such as shell profile or service configuration.
dist/dist-DEUmH1sy.mjsView on unpkg · L7Package source references weak cryptographic algorithms.
dist/dist-DEUmH1sy.mjsView on unpkg · L7Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/js-exec-N5KEZBH7-yV-xrF3D.mjsView on unpkg · L40