AI Security Review
scanned 23h ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a user-invoked local code review UI that shells out to git/jj and serves local diff data to its bundled frontend.
Decision evidence
public snapshot- package.json has no install/postinstall lifecycle scripts; only bin skepsis -> dist/cli.js
- dist/cli.js starts a local Hono HTTP server for a browser diff UI, bound to localhost by default
- Command execution is package-aligned: git/jj diff/show/root/rev-parse and OS opener after explicit CLI invocation
- Writes are package-aligned: viewed state under ~/.local/share/skepsis and user-requested review comments into cwd files
- No external network endpoints found; URLs are localhost, docs, or README/repository links
- No AI-agent control-surface writes, persistence hooks, credential harvesting, or exfiltration found
Source & flagged code
7 flagged · loading sourcePackage source references child process execution.
dist/web/assets/php-BOW3iyEw.jsView on unpkg · L1Source executes local commands and sends command output to an external endpoint.
dist/cli.jsView on unpkg · L1A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/cli.jsView on unpkg · L1A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli.jsView on unpkg · L22338Package source references dynamic require/import behavior.
dist/web/assets/typescript-BzMquqD6.jsView on unpkg · L1