AI Security Review
scanned 2h ago · by lpm-firewall-aiExplicit `deposit`, `send`, `swap`, `bridge`, and `recover` commands can move cryptocurrency. The remote RAIL20 API supplies some transaction calldata, including router transaction lists that the CLI broadcasts from a funded burner wallet. No install-time or import-time attack surface is present.
Decision evidence
public snapshot- `bin/rail20.js` broadcasts transaction objects returned by `/api/router/execute` from a burner wallet.
- `bin/rail20.js` sends server-prepared deposit/swap calldata with user or burner signers.
- The CLI handles private keys and creates burner wallets for explicit fund-moving commands.
- `package.json` defines no preinstall, install, postinstall, or prepare hooks.
- `bin/rail20.js` runs only through the explicit `rail20` bin command.
- No shell execution, eval, dynamic code loading, credential harvesting, or AI-agent config writes were found.
- Private keys are stored locally or used to sign; API request bodies inspected do not include the main wallet private key.
Source & flagged code
2 flagged · loading sourceSource uses private key material to transfer cryptocurrency funds.
bin/rail20.jsView on unpkg · L2A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
bin/rail20.jsView on unpkg · L2