AI Security Review
scanned 3d ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The risky capabilities are part of a local-first AI work-tracking app and activate through the CLI/server UI, not during install.
Decision evidence
public snapshot- dist/server.js exposes powerful user-facing agent orchestration that can spawn Claude/Codex-backed work sessions
- dist/server.js can download and verify Newt tunnel binaries from GitHub when remote pairing is enabled
- dist/bin/orangetree.js has daemon/update commands that spawn detached processes and global npm install on explicit update
- package.json has no install/preinstall/postinstall lifecycle hooks
- dist/bin/orangetree.js only starts/stops/status/updates the declared Orange Tree daemon when the CLI is invoked
- dist/server.js network calls are for local UI, cloud pairing/reporting, npm update checks, and Newt tunnel setup
- dist/server.js stores app state under OTREE_DATA or ~/.orangetree and bot metadata under bot-profiles; comments state Claude credentials are not copied there
- remote mode has token/cloud session gates, loopback-only controls for setup/update/shutdown/tunnel, and root-jail path checks
- no evidence of credential harvesting, covert exfiltration, persistence outside app daemon behavior, or install-time execution
Source & flagged code
6 flagged · loading sourcePackage source references child process execution.
dist/bin/orangetree.jsView on unpkg · L87A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/bin/orangetree.jsView on unpkg · L87Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/bin/orangetree.jsView on unpkg · L64Package contains source files above the static scanner size ceiling.
dist/public/mermaid.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/server.jsView on unpkg