AI Security Review
scanned 4d ago · by lpm-firewall-aiNo confirmed malicious exfiltration was found. The main unresolved risk is an install-time cleanup hook that deletes same-named jssm binaries outside the package, which is package-aligned but destructive without an explicit prompt.
Decision evidence
public snapshot- package.json defines postinstall: node scripts/postinstall.mjs
- scripts/postinstall.mjs runs at install time and rmSync deletes discovered jssm binaries on PATH/common global bin dirs
- dist/index.cjs has user-invoked child_process spawn for browser open and spawnSync npm install self-update
- dist/index.cjs reads .env files and uploads them only through init/push user flows
- No import-time execution found beyond CLI code in dist/index.cjs
- Network calls are aligned with JSSM auth/project/env management endpoints
- Auth token is stored locally under ~/.jssm/auth and sent as Authorization only to configured JSSM host
- No credential harvesting beyond explicit login/register and user-confirmed env push flows
- No obfuscated staged payload, eval/vm, native binary loading, persistence, or AI-agent control writes found
Source & flagged code
4 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource appears to send environment or credential material to an external endpoint.
dist/index.cjsView on unpkg · L35A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/index.cjsView on unpkg · L35