AI Security Review
scanned 2h ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The only install-time behavior is a narrow chmod repair for node-pty helper binaries in dependency install layouts.
Decision evidence
public snapshot- postinstall exists and chmods node-pty prebuild spawn-helper files under nearby node_modules layouts
- CLI imports child_process/fs/crypto and can write generated keys/config under user-invoked commands
- scripts/postinstall.mjs only adjusts executable bits for package dependency node-pty spawn-helper; no network, shell execution, or foreign AI-agent config mutation seen
- package.json bin points to dist/cli/index.js; prepare is build-only and not a published install hook for registry consumers
- No credential harvesting or exfiltration endpoints found in inspected lifecycle script/package manifest
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource writes persistence or remote-access backdoor material.
dist/cli/index.jsView on unpkg · L38A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/cli/index.jsView on unpkg · L38Package source references dynamic require/import behavior.
dist/cli/index.jsView on unpkg · L397Package source references weak cryptographic algorithms.
dist/cli/index.jsView on unpkg · L38This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index-34kn28k6.jsView on unpkg