AI Security Review
scanned 2d ago · by lpm-firewall-aiExplicit CLI execution opens an authenticated WebSocket sidecar to the Whalent gateway. The gateway can request constrained desktop operations, including reading clipboard data and opening terminal/browser helpers.
Decision evidence
public snapshot- `dist/index.cjs` is deliberately obfuscated, hindering auditability.
- CLI connects to `wss://memory.whalent.com/gw/sdk/ws` with its token in URL query parameters.
- Gateway messages can invoke desktop actions including terminal, clipboard read/write, browser, and resize.
- `clip_get` returns up to 256 KiB of clipboard text through command results.
- `package.json` has only `prepublishOnly`; no install-time lifecycle hook.
- Entry is a user-invoked CLI/bin, not an import-time payload.
- Local processes use fixed helpers (`whalent-desktop`, `whalent-resize`, `xclip`) with bounded parameters/timeouts.
- No source evidence of remote payload download, arbitrary shell strings, filesystem harvesting, or persistence.
Source & flagged code
3 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/index.cjsView on unpkg · L1Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/index.cjsView on unpkg · L1Package source references dynamic require/import behavior.
dist/index.cjsView on unpkg · L1