AI Security Review
scanned 9h ago · by lpm-firewall-aiNo confirmed malicious install-time attack surface was found. The main unresolved risk is that the bundled CLI contains hardcoded Bitbucket repository tokens and can clone remote private source on explicit init/create commands.
Decision evidence
public snapshot- index.bundle.js embeds Bitbucket access-token fallbacks for API/UI/customer-portal repositories.
- index.bundle.js init/create builds authenticated bitbucket.org clone URLs and spawns git clone into a new project directory.
- index.bundle.js user-invoked run can spawn npm install/npm run and local API/UI processes with inherited environment.
- index.bundle.js backup/restore use execSync for pg_dump/psql against local PostgreSQL.
- scripts/build-aws.js uses child_process.spawnSync dotnet publish and writes packaged appsettings during maintainer build.
- package.json has no preinstall/install/postinstall hook; only prepublishOnly/prepack maintainer scripts are declared.
- CLI behavior is exposed through bin index.bundle.js and commander commands, not import-time package execution.
- Observed network endpoints are package-aligned localhost, bitbucket.org repository clones, and developer documentation/CDN URLs.
- No evidence of credential harvesting from user files, npm tokens, SSH keys, browser stores, or AI-agent control files.
- No AGENTS/Codex/Claude/Cursor/Windsurf control-surface writes found in inspected source.
Source & flagged code
12 flagged · loading sourcePackage contains a possible secret pattern.
dist/ui/assets/SetupWizard-609e8434.jsView on unpkg · L1Package source references child process execution.
dist/ui/assets/vendor-pdf-b5ab85ab.jsView on unpkg · L1Package source references dynamic require/import behavior.
dist/ui/assets/vendor-pdf-b5ab85ab.jsView on unpkg · L1Package source references a known benign dynamic code generation pattern.
dist/ui/assets/vendor-pdf-b5ab85ab.jsView on unpkg · L1Manifest entrypoint contains risky behavior absent from dist/build output.
index.bundle.jsView on unpkg · L1A single source file combines environment access, network access, and code or shell execution; review context before blocking.
index.bundle.jsView on unpkg · L12Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
index.bundle.jsView on unpkg · L12Source appears to collect browser login credentials for exfiltration.
dist/ui/assets/vendor-msal-69061c3a.jsView on unpkg · L1Source reaches cloud instance metadata or link-local credential endpoints.
dist/ui/assets/vendor-msal-69061c3a.jsView on unpkg · L1Package contains source files above the static scanner size ceiling.
dist/ui/assets/index-f9dbc56a.jsView on unpkgHardcoded password in dist/customer-portal/assets/index-737fd7d3.js
dist/customer-portal/assets/index-737fd7d3.jsView on unpkg · L123