AI Security Review
scanned 18h ago · by lpm-firewall-aiNo confirmed unconsented install-time or import-time attack surface was established. The package is a user-invoked project scaffold; its generated development launcher starts local tooling and polls localhost only.
Decision evidence
public snapshot- `dist/src/scaffold.mjs` is obfuscated, reducing auditability.
- The CLI accepts user-supplied `--template-repo`, so explicit scaffolding can use a remote template source.
- `package.json` has no preinstall/install/postinstall/prepare lifecycle hook.
- `bin/create-shell-app.mjs` runs only when the user invokes `create-shell-app`.
- The readable CLI only parses options and calls scaffold/copy/upgrade functions.
- `dev.mjs` uses local `127.0.0.1` polling and explicit `pnpm`/Electron development commands.
- No inspected code uses eval/vm, credential harvesting, persistence, or foreign AI-agent config mutation.
Source & flagged code
6 flagged · loading sourcePackage source references dynamic require/import behavior.
bin/create-shell-app.mjsView on unpkg · L9Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/bin/create-shell-app.mjsView on unpkg · L1Package ships non-JavaScript build or shell helper files.
dist/bundled-templates/templates/photo-sorter/skills/photo-face-sorter/scripts/query_photos.pyView on unpkgPackage ships high-entropy non-source blobs.
dist/bundled-templates/templates/_base/build/icons/icon.icnsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/bundled-templates/templates/_base/scripts/dev.mjsView on unpkgHardcoded password in dist/docs/wujie-ai-business.md
dist/docs/wujie-ai-business.mdView on unpkg · L174