AI Security Review
scanned 2d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is an AI agent evaluation framework that runs selected agents in Docker/Vercel sandboxes and writes eval results/project scaffolds during explicit CLI workflows.
Decision evidence
public snapshot- package.json has no install/postinstall/prepare hook; only prepublishOnly build for publisher use.
- dist/cli.js actions are user-invoked CLI commands; npx playground launch is explicit.
- dist/lib/agents/*/run.mjs spawn agent CLIs inside orchestrated sandbox runners, not import/install time.
- dist/lib/agents/codex/agent.js writes ~/.codex/default.config.toml via sandbox setup for the selected Codex agent.
- dist/lib/init.js only scaffolds files under a user-requested project directory.
- No credential harvesting or exfiltration endpoints found; env vars are checked/passed to configured agents.
Source & flagged code
5 flagged · loading sourcePackage source references child process execution.
dist/lib/agents/claude-code/run.mjsView on unpkg · L21Package source invokes a package manager install command at runtime.
dist/cli.jsView on unpkg · L233Package source references a known benign dynamic code generation pattern.
dist/cli.jsView on unpkg · L109Package source references dynamic require/import behavior.
dist/lib/config.jsView on unpkg · L111