Share any directory as a beautiful web page — render MD/HTML/YAML with built-in auth
A running daemon exposes a remotely reachable authentication path with command injection. The risk is a critical vulnerability, not confirmed malicious behavior.
This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bin/mvp-serve.jsView on unpkgPackage source invokes a package manager install command at runtime.
bin/mvp-serve.jsView on unpkg · L8A single source file combines environment access, network access, and code or shell execution; review context before blocking.
src/cli.tsView on unpkg · L1Package source invokes a package manager install command at runtime.
bin/mvp-serve.jsView on unpkg · L8This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bin/mvp-serve.jsView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
src/cli.tsView on unpkg · L1