AI Security Review
scanned 8d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a platform server with user/runtime-invoked tool execution and configured outbound integrations, but no install-time/import-time harvesting, persistence, or hidden exfiltration was found.
Decision evidence
public snapshot- dist/start-BopA4OXE.mjs bundles just-bash commands including bash/sh and js-exec for runtime tool execution.
- dist/js-exec-N5KEZBH7-PxuNBAca.mjs exposes a sandboxed JS runtime with fs/fetch/child_process-like APIs to invoked scripts.
- dist/dist-Dfoa0fsU.mjs imports child_process.spawnSync and uses tar to extract route manifests from project artifacts.
- package.json has no install/preinstall/postinstall lifecycle hooks; scripts are dev/start/test only.
- dist/run.mjs only starts the platform server via definePlatformConfig/startPlatformServer when explicitly run.
- Network calls are package-aligned: Slack webhook env, Vercel model catalog, configured platform URLs, S3/database/admin APIs.
- Cloud metadata finding is an SSRF blocklist in dist/dist-Dfoa0fsU.mjs, not a credential fetch.
- dist/chunk-TN7HHBQW-B8PYcKz5.mjs contains defenses blocking process.env, process.getBuiltinModule, eval/Function during script execution.
- README.md documents the platform control-plane server, Slack webhook, and public models endpoints.
Source & flagged code
8 flagged · loading sourcePackage source references child process execution.
dist/start-BopA4OXE.mjsView on unpkg · L22428Package source references a known benign dynamic code generation pattern.
dist/chunk-TN7HHBQW-D_SK6w5n.cjsView on unpkg · L17Package source references dynamic require/import behavior.
dist/head-442HYESI-Dl61xdxd.cjsView on unpkg · L1Package source references weak cryptographic algorithms.
dist/dist-Dfoa0fsU.mjsView on unpkg · L7Source reaches cloud instance metadata or link-local credential endpoints.
dist/dist-BSIIH4ft.cjsView on unpkg · L31Source writes installer persistence such as shell profile or service configuration.
dist/dist-BSIIH4ft.cjsView on unpkg · L31This package version adds a dangerous source file absent from the previous stored version.
dist/js-exec-N5KEZBH7-BfVFKq8I.cjsView on unpkgSource spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/js-exec-N5KEZBH7-BfVFKq8I.cjsView on unpkg · L40