AI Security Review
scanned 3h ago · by lpm-firewall-aiInstallation automatically executes `run.js` on non-Windows systems. It harvests ECS/AWS credentials and host/container information, probes DynamoDB permissions, then sends the payload to a remote Cloudflare tunnel.
Decision evidence
public snapshot- `package.json` runs `node run.js` in both `preinstall` and `postinstall`.
- `run.js` fetches ECS task-role credentials from `169.254.170.2`, including secret key and token.
- `run.js` collects AWS environment credentials, host/user/network data, and container/process details.
- `run.js` runs shell commands to inspect mounts, capabilities, entrypoint data, and package directories.
- `run.js` executes a Python DynamoDB permission audit that reads table records and attempts writes, updates, and deletes.
- `run.js` POSTs the collected payload to `curves-highly-arbor-displayed.trycloudflare.com`.
- No AI-agent control-surface files or configuration writes were found.
- No secondary payload download or dynamic code-loading path was found.
Source & flagged code
4 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
run.jsView on unpkg · L11Source reaches cloud instance metadata or link-local credential endpoints.
run.jsView on unpkg · L11