AI Security Review
scanned 3d ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The package is a bundled SQLAnvil core compiler/protobuf API with schema fields for database credentials but no exfiltration or install-time execution.
Static reason
High-risk behavior combination matched malicious policy.
Trigger
User imports @sqlanvil/core or invokes its exported compiler/runtime APIs.
Impact
No malicious impact identified by static inspection.
Mechanism
Package-aligned SQL workflow compiler and protobuf model handling.
Rationale
Static source inspection found a legitimate bundled SQL workflow compiler/protobuf package; risky scanner hits map to documentation/schema strings and a package-aligned fs import, not attack behavior. There are no lifecycle hooks, network/exfiltration primitives, shell execution, or protestware payload indicators.
Evidence
package.jsonbundle.jsbundle.d.tsREADME.mdconfigs.protocore.protojit.protodb_adapter.protoextension.proto
Decision evidence
public snapshotAI called this Clean at 92.0% confidence as Benign with low false-positive risk.
Evidence for block
- bundle.js contains a single Node builtin import require("fs"), consistent with compiler/project file handling.
- bundle.js exports compiler, indexFileGenerator, jitCompiler, main, session, supportedFeatures, version from the bundled core entrypoint.
Evidence against
- package.json has main bundle.js and no lifecycle scripts, bin, or install hooks.
- package.json declares no dependencies; resolutions only pin transitive package versions and are inert for consumers.
- No child_process, shell execution, eval/vm, dynamic require/import, or network client imports were found in bundle.js.
- No credential harvesting or exfiltration paths found; credential/password strings are schema fields and docs for SQL warehouse configs.
- README.md describes SQL workflow compilation for BigQuery/Postgres/Supabase/MySQL, matching bundled proto/compiler APIs.
- Protestware keyword scan found no protest/political payload indicators in package files.
Behavioral surface
ChildProcessShell
HighEntropyStringsMinifiedObfuscatedProtestwareTrivialUrlStrings
Source & flagged code
0 flaggedNo flagged code excerpts are attached to this scan.
Findings
1 Critical1 Medium5 Low
CriticalProtestware
MediumStructural Risk Force Deep Review
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings
LowAi Review Evidence
LowAi Review Evidence