AI Security Review
scanned 9d ago · by lpm-firewall-aiNo confirmed unconsented install-time or import-time compromise was found. The package exposes a powerful user-invoked agent daemon surface with gateway sync, terminal/process supervision, history import, and update behavior.
Decision evidence
public snapshot- dist/index.cjs and dist/core.cjs are deliberately obfuscated bundled CLI/runtime files.
- dist/index.cjs runtime can run npm view/install to update wrapper/core and supervises spawned core process.
- README.md states daemon accepts remote upgrade/restart commands via gateway.
- dist/core.cjs references Codex/Claude history, sqlite helper, terminal/agent sync, and gateway events.
- scripts/preinstall-check.cjs only checks Node major version; no network, fs writes, or credential access.
- No install-time payload execution beyond package.json preinstall Node version guard.
- Remote gateway, token, history import, helper cache, and auto_restart behavior are disclosed in README.md.
- Network and process primitives align with declared Whalent AI agent/daemon CLI functionality.
Source & flagged code
6 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version.
dist/index.cjsView on unpkgSource contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/index.cjsView on unpkg · L1Package source references dynamic require/import behavior.
dist/index.cjsView on unpkg · L1Package contains source files above the static scanner size ceiling.
dist/core.cjsView on unpkgPackage contains an oversized executable-looking CLI entrypoint.
dist/core.cjsView on unpkg