AI Security Review
scanned 8h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- dist/commands/studio.js writes .mcp.json in process.cwd() during explicit skuilder studio command
- dist/commands/studio.js .mcp.json registers bundled dist/mcp-server.js with CouchDB env including password
- dist/commands/studio.js spawns npm build scripts for user course questions during studio command
- dist/mcp-server.js exposes MCP tools over stdio for course create/update/tag/delete operations
- package.json has no preinstall/install/postinstall lifecycle hooks
- dist/cli.js only initializes commander and registers init/pack/unpack/studio commands
- network activity is package-aligned CouchDB/Express/studio localhost URLs or user-provided CouchDB server
- dist/commands/init.js writes scaffolded project files only after explicit init command
- dist/commands/pack.js and dist/commands/unpack.js read/write course data for explicit user commands
- No credential harvesting, external exfiltration endpoint, destructive install-time behavior, or remote payload loading found
Source & flagged code
5 flagged · loading sourcePackage contains a possible secret pattern.
dist/commands/studio.jsView on unpkg · L379Hardcoded password in dist/commands/studio.js
dist/commands/studio.jsView on unpkg · L409Package source references dynamic require/import behavior.
dist/studio-ui-src/main.tsView on unpkg · L103Hardcoded password in src/commands/studio.ts
src/commands/studio.tsView on unpkg · L498Hardcoded password in src/commands/studio.ts
src/commands/studio.tsView on unpkg · L529