AI Security Review
scanned 2h ago · by lpm-firewall-aiExplicitly exported Next.js handlers expose broad-CORS, unauthenticated project-file read/write functionality. No install-time execution or credential exfiltration was found.
Static reason
One or more suspicious static signals were detected.
Trigger
A developer exports either supplied Next.js route handler and a remote origin sends GET/POST requests.
Impact
A reachable handler can modify JSON files such as the host project's `package.json`, or CSS variables and override data, within `process.cwd()`.
Mechanism
Broad-CORS runtime file mutation through project-relative request paths.
Rationale
Source inspection found a concrete, externally triggerable file-write capability when the documented route handlers are deployed, with wildcard CORS and no authentication. It is package-aligned design-inspector functionality but unsafe enough to warn rather than block.
Evidence
package.jsondist/create-global-variables-fetch-rewriter.jsdist/next/route-handler.jsdist/next/translations-route-handler.jsdist/server/apply-translation-changes-to-file.jsdist/server/variable-overrides.jsprocess.cwd()/design-inspector-overrides.jsonprocess.cwd()/<relativePath>
Network endpoints1
/rewrite-global-variables
Decision evidence
public snapshotAI called this Suspicious at 91.0% confidence as Critical Vulnerability with medium false-positive risk.
Evidence for warning
- `dist/next/route-handler.js` exposes unauthenticated POST writes with `Access-Control-Allow-Origin: *`.
- `dist/next/translations-route-handler.js` reads and rewrites any project-relative JSON path without an extension allowlist.
- Translation writes can target `process.cwd()/package.json` and replace nested string values.
- `dist/server/variable-overrides.js` writes `design-inspector-overrides.json` under an env-selected or current-workdir root.
Evidence against
- `package.json` has no preinstall, install, postinstall, or prepare lifecycle hook.
- Package code contains no child-process, eval, dynamic loader, binary, or external-host network behavior.
- Path resolution rejects absolute paths and `..` traversal; source writes are user-enabled by explicitly exporting route handlers.
Behavioral surface
ChildProcessEnvironmentVarsFilesystemNetwork
HighEntropyStrings
Source & flagged code
4 flagged · loading sourcedist/InspectorProvider.jsView file
10patternName = generic_password
severity = medium
line = 10
matchedText = export c...=> {
Medium
Secret Pattern
Package contains a possible secret pattern.
dist/InspectorProvider.jsView on unpkg · L10dist/components/TranslationInspectorPage/index.jsView file
7patternName = generic_password
severity = medium
line = 7
matchedText = const DE...' };
Medium
Secret Pattern
Hardcoded password in dist/components/TranslationInspectorPage/index.js
dist/components/TranslationInspectorPage/index.jsView on unpkg · L7dist/components/TranslationInspectorPage/index.d.tsView file
12patternName = generic_password
severity = medium
line = 12
matchedText = /** Auth...' */
Medium
Secret Pattern
Hardcoded password in dist/components/TranslationInspectorPage/index.d.ts
dist/components/TranslationInspectorPage/index.d.tsView on unpkg · L12dist/InspectorProvider.d.tsView file
21patternName = generic_password
severity = medium
line = 21
matchedText = /** Auth...' */
Medium
Secret Pattern
Hardcoded password in dist/InspectorProvider.d.ts
dist/InspectorProvider.d.tsView on unpkg · L21Findings
6 Medium3 Low
MediumSecret Patterndist/InspectorProvider.js
MediumNetwork
MediumEnvironment Vars
MediumSecret Patterndist/components/TranslationInspectorPage/index.js
MediumSecret Patterndist/components/TranslationInspectorPage/index.d.ts
MediumSecret Patterndist/InspectorProvider.d.ts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings