AI Security Review
scanned 2h ago · by lpm-firewall-aiCalling VM boot with networking and no existing gvproxy can fetch and execute a remote helper. This is package-aligned runtime behavior, but the fetched executable is not integrity-verified.
Decision evidence
public snapshot- `dist/index.js` downloads a platform-specific `gvproxy` binary at runtime.
- Downloaded bytes are written under `~/.machinen`, chmod 0755, then spawned.
- The download URL has no visible checksum or signature verification.
- `package.json` has no preinstall/install/postinstall lifecycle hook.
- Network download is reachable from explicit VM boot/networking behavior, not import time.
- Process, filesystem, and guest command APIs align with a microVM runtime.
- No credential harvesting, exfiltration, AI-agent config mutation, or stealth persistence found.
Source & flagged code
4 flagged · loading sourceSource combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/index.jsView on unpkg · L6640Package source references dynamic require/import behavior.
dist/index.jsView on unpkg · L498