AI Security Review
scanned 9d ago · by lpm-firewall-aiNo confirmed malicious install/import-time attack surface was established. The dangerous primitives are part of an explicitly named AI agent/daemon CLI and require user runtime invocation/configuration.
Decision evidence
public snapshot- dist/index.cjs and dist/core.cjs are deliberately obfuscated bundles.
- dist/index.cjs runtime wrapper can install/update @whalent/agent and @whalent/agent-core via npm when invoked.
- dist/core.cjs is a large AI-agent daemon/client with gateway, token, provider CLI, terminal, and remote command handling capabilities.
- package.json preinstall only runs scripts/preinstall-check.cjs.
- scripts/preinstall-check.cjs only checks Node major version and exits on Node <20.
- No install-time credential harvesting, filesystem crawling, or exfiltration found.
- Network use appears aligned with an agent product: npm registry probes/updates, provider APIs, gateway/platform URLs, websocket/SSH dependencies.
- Sensitive env names such as WHALENT_TOKEN, OPENAI_API_KEY, and ANTHROPIC_API_KEY are used as runtime configuration for agent/provider operation.
Source & flagged code
6 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.cjsView on unpkgSource contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/index.cjsView on unpkg · L1Package source references dynamic require/import behavior.
dist/index.cjsView on unpkg · L1Package contains source files above the static scanner size ceiling.
dist/core.cjsView on unpkgPackage contains an oversized executable-looking CLI entrypoint.
dist/core.cjsView on unpkg