AI Security Review
scanned 1d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a user-invoked local diff review tool with local HTTP APIs for diff viewing, viewed-state tracking, and optional review-comment insertion.
Decision evidence
public snapshot- package.json has no install/postinstall lifecycle hooks; only bin skepsis -> dist/cli.js.
- README.md describes a local browser diff review UI using git/jj and local comment insertion.
- dist/cli.js binds a local Hono HTTP server on localhost by default and serves bundled web assets.
- dist/cli.js runs git/jj diff/show via argv arrays in response to explicit CLI/API use, not install/import time.
- dist/cli.js writes viewed state only under ~/.local/share/skepsis and review comments into user-selected working-copy files.
- No credential harvesting, external exfiltration endpoint, persistence, or AI-agent control-surface writes were found.
Source & flagged code
7 flagged · loading sourcePackage source references child process execution.
dist/web/assets/index-CA5iKp7g.jsView on unpkg · L160Source executes local commands and sends command output to an external endpoint.
dist/cli.jsView on unpkg · L1A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/cli.jsView on unpkg · L1A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli.jsView on unpkg · L22284Package source references dynamic require/import behavior.
dist/web/assets/javascript-KezPQq9h.jsView on unpkg · L1