AI Security Review
scanned 2d ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The package is a high-privilege opencode agent/dashboard installer with user-invoked setup, subprocess, and local dashboard capabilities that match its stated purpose.
Decision evidence
public snapshot- cli/bin.mjs runs ensureSetup on most bin invocations, not only explicit install
- install.sh fetches third-party installers and installs tools/packages when setup is run
- bizar-dash/src/server/update-store.mjs can run npm install -g @polderlabs packages via dashboard update action
- package.json has no lifecycle scripts; npm install does not auto-run package code
- Privileged writes are aligned with an opencode agent/dashboard installer and are user/bin invoked
- plugins/bizar/src/options.ts refuses log/state dirs inside ~/.ssh, ~/.gnupg, ~/.aws, ~/.kube
- bizar-dash/src/server/auth.mjs uses bearer tokens for non-loopback dashboard access
- bizar-dash/src/web/lib/types.ts is inert TypeScript type declarations despite scanner delta
- No credential harvesting or exfiltration endpoint found in inspected entrypoints
Source & flagged code
30 flagged · loading sourcePackage contains a critical-looking secret pattern.
bizar-dash/tests/memory-sync.test.mjsView on unpkg · L107AWS access key ID in bizar-dash/tests/memory-sync.test.mjs
bizar-dash/tests/memory-sync.test.mjsView on unpkg · L107Package source references child process execution.
bizar-dash/tests/memory-sync.test.mjsView on unpkg · L12Package source references a known benign dynamic code generation pattern.
templates/plan/htmx.min.jsView on unpkg · L1Package source references dynamic require/import behavior.
bizar-dash/tests/mod-instructions.node.test.mjsView on unpkg · L28Package source references weak cryptographic algorithms.
bizar-dash/src/server/routes/activity.mjsView on unpkg · L25A single source file combines environment access, network access, and code or shell execution; review context before blocking.
bizar-dash/src/server/schedules-runner.mjsView on unpkg · L18Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
cli/bin.mjsView on unpkg · L703Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
cli/copy.mjsView on unpkg · L80Package source invokes a package manager install command at runtime.
bizar-dash/src/server/update-store.mjsView on unpkg · L77Package ships non-JavaScript build or shell helper files.
config/skills/embedded-esp-idf/scripts/size_check.shView on unpkgTarball package.json differs from the npm registry version manifest for scripts or dependency sets.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version.
bizar-dash/src/web/lib/types.tsView on unpkgAWS access key ID in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L19GitHub personal access token in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L25Stripe live secret key in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L31Slack bot token in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L37RSA private key in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L43AWS access key ID in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L92AWS access key ID in bizar-dash/tests/memory-secrets.test.mjs
bizar-dash/tests/memory-secrets.test.mjsView on unpkg · L99AWS access key ID in bizar-dash/tests/memory-store.test.mjs
bizar-dash/tests/memory-store.test.mjsView on unpkg · L219AWS access key ID in bizar-dash/tests/memory-cli.test.mjs
bizar-dash/tests/memory-cli.test.mjsView on unpkg · L231Hardcoded password in bizar-dash/scripts/smoke-bg-retry.mjs
bizar-dash/scripts/smoke-bg-retry.mjsView on unpkg · L45Hardcoded password in bizar-dash/scripts/smoke-bg-retry.mjs
bizar-dash/scripts/smoke-bg-retry.mjsView on unpkg · L53Hardcoded password in bizar-dash/scripts/smoke-bg-retry.mjs
bizar-dash/scripts/smoke-bg-retry.mjsView on unpkg · L65Hardcoded password in plugins/bizar/tests/http-client.test.ts
plugins/bizar/tests/http-client.test.tsView on unpkg · L51Hardcoded password in plugins/bizar/tests/serve.test.ts
plugins/bizar/tests/serve.test.tsView on unpkg · L70Hardcoded password in plugins/bizar/src/serve-info.ts
plugins/bizar/src/serve-info.tsView on unpkg · L24Hardcoded password in packages/sdk/tests/client.test.ts
packages/sdk/tests/client.test.tsView on unpkg · L23