AI Security Review
scanned 3d ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. The package is a PWA-to-native wrapper CLI whose filesystem writes, workflow scaffolding, package install, and device/build subprocesses are explicit command behavior.
Decision evidence
public snapshot- src/cli.ts shells out to bun/ns/adb/xcrun/fastlane/bunx during user-invoked dev/build/deploy/publish commands.
- src/cli.ts writes generated wrapper files and may scaffold .github/workflows during appwrap init.
- src/cli.ts can curl cfg.backendOrigin/cfg.vendorPaths assets into the app bundle when configured.
- package.json has no install/postinstall lifecycle hooks; prepack/postpack are publish-time packaging only.
- src/cli.ts dispatch is gated by import.meta.main; config export import does not run CLI commands.
- Shell/package-manager commands are aligned with native app scaffolding/build/deploy behavior and require explicit CLI commands.
- Network URLs are user-supplied config/dev-server/push endpoints or local appwrap runtime origins, not hardcoded exfiltration endpoints.
- No credential harvesting or hidden persistence found; signing env vars are passed to build tools and masked in logs.
- runtime/app/shell/handlers-extended.ts dynamic require loads @nativescript/secure-storage for declared secure-storage capability.
Source & flagged code
4 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version.
src/cli.tsView on unpkgPackage source invokes a package manager install command at runtime.
src/cli.tsView on unpkg · L1432Package source references dynamic require/import behavior.
runtime/app/shell/handlers-extended.tsView on unpkg · L187